Migrating from SMS to other MFA options

barend · July 11, 2023, 1:04pm

Hi there, we currently have SMS enabled as a 2nd factor option. However, due to the risks related to SMS we would like to move away from SMS. Therefore I have two questions (which I cannot find in docs & community).

Is there a mechanism for users only having SMS as second factor to setup a new factor automically (forced)? Of course this can only be done after validating the SMS method.
Can we disable SMS for a geographical location?

Keen to hear your thoughs!

dan.woda · July 13, 2023, 2:40pm

Hi @barend,

There isn’t currently a built-in mechanism for this unfortunately, but don’t lose hope, we have an item on our internal roadmap to allow factor selection in Actions. This would allow you to prompt users for a different factor, and I think could address the geographical request too.

barend · July 14, 2023, 8:14am

Thanks for your response Dan. Any idea on term?

dan.woda · July 14, 2023, 12:41pm

I don’t have any exact dates to share unfortunately.

Topic		Replies	Views
MFA SMS first and then Authenticator Archived	2	2380	March 11, 2021
Provide a possibility to set default MFA factor for Classic Login Product Feedback	1	816	July 17, 2023
Is there any improvement on restriction 2fa email only Archived	5	2927	July 10, 2020
Why SMS Only as option on login Get Help	1	2085	October 19, 2022
Ability to select the default MFA factor Get Help mfa , mfa-sms	3	2705	May 19, 2021

Migrating from SMS to other MFA options

Related topics