MFA Enrollment Fails with Maximum Authenticators Error

auth0.knowledge2 · June 6, 2025, 8:26pm

Overview

This article explains why the following error occurs when a user attempts to enroll in Multi-Factor Authentication (MFA):

Guardian - User has created the maximum amount of authenticators

Applies To

MFA enrollment

Cause

This error occurs when a user fails to complete MFA enrollment multiple times. After 50 failed attempts, the user is blocked from enrolling a new authenticator.

Solution

To resolve this issue, use one of the following options:

Perform an MFA reset for the user.
If the MFA reset does not work, execute a DELETE call to the Management API endpoint to delete the user’s authenticators.
Alternatively, wait 24 hours. Pending authenticators have a 24-hour Time To Live (TTL) and are automatically removed if they are not confirmed. After this period, the user can attempt MFA enrollment again.

Topic		Replies	Views
User cannot enroll new mfa device Get Help mfa , enrollment	5	4013	December 3, 2019
Error While Enrolling New Device with Auth0 Guardian App Knowledge Articles	1	684	January 9, 2024
User can't enroll MFA Get Help mfa	4	2932	July 14, 2020
MFA enrollment does not work Get Help mfa , issue	2	1888	October 17, 2022
"User is already enrolled" error when enrolling more than one MFA factors using MFA API Knowledge Articles token , mfa , enrollment , managment-api-v2 , enroll	1	2376	September 19, 2022

MFA Enrollment Fails with Maximum Authenticators Error

Overview

Applies To

Cause

Solution

Related topics