MFA Challenge Screen Timeout

gabriela.pantea · September 5, 2024, 2:48pm

Last Updated: Sep 27, 2024

Overview

This article clarifies what is the actual duration for the New Universal Login MFA timeout duration from landing to MFA screen.

Applies To

Multifactor Authentication (MFA)
New Universal Login MFA

Solution

The challenge screen is tied to the user’s session. Therefore, it will not timeout until either:

the user completes the challenge,
the user logs out, killing their session,
their session lifetime expires.

As a result, controlling the user session expiry also controls the challenge screen.

When a user completes their primary authentication but hasn’t completed MFA, a partial session is created for the user that is awaiting the MFA flow to complete. The user will continue to be faced with the MFA challenge until either their session expires or one of the other two options mentioned above occurs. There is no other way to configure an MFA timeout (other than the session timeout configuration linked above).

Topic		Replies	Views
Enhanced MFA Security Controls Feedback feature-request	0	18	August 17, 2024
Strategies to Prompt MFA at Customized Intervals Knowledge Articles actions , multifactor	1	694	December 7, 2023
MFA timeout redirect to auth0 login page Help auth0 , timeout	3	4127	November 29, 2018
Controlling MFA Expiration Time Help auth0 , mfa	1	2644	September 23, 2022
Universal login SMS expiration message Help mfa , mfa-prompt-new-experience	1	42	August 1, 2024

MFA Challenge Screen Timeout

Overview

Applies To

Solution

Related Topics