MFA for specific connections

lihua.zhang · August 18, 2023, 10:35pm

Problem statement

How can configure MFA to apply only for specific connections?

Solution

You can use a post-login action (Login Flow) to achieve this. Here’s an example:

exports.onExecutePostLogin = async (event, api) => {
  // Require MFA for anyone logging in via the Username-Password-Authentication connection
  if (event.connection.name === "Username-Password-Authentication") {
    api.multifactor.enable("any");
  }
}

Please refer to the following for more details:
api.multifactor.enable(provider, options) API reference:

event.connection object reference:

Topic		Replies	Views
Selective Implementation of MFA for Specific Auth0 Database Connections Knowledge Articles database-connections , mfa-enforcement	1	253	May 16, 2024
Can I configure MFA for a particular application not for all? Help mfa , one-time-password-otp-factor	6	1558	April 28, 2023
Enable MFA Based on User Connection Knowledge Articles mfa , connection , extensibility , actions , mfa-enablement	1	2393	June 17, 2022
Limit MFA Requirement to Database Users Only Knowledge Articles	1	540	October 4, 2023
How to correctly enable SMS or email MFA in post-login trigger Help management-api , users	2	36	October 10, 2024

MFA for specific connections

Problem statement

Solution

Related Topics