SMS OTP attempt Limits

lihua.zhang · March 1, 2023, 8:10pm

Problem statement

This document mentioned that only 3 failed sms-opt codes are accepted. Can we increase it to, let’s say, 5 attempts?

Solution

The default number of attempts to enter OTP is 3, which is not configurable. Upon breaching this limit, the user is NOT blocked, just that the transaction can’t succeed anymore even if the user enters the correct OTP. The user must request and verify a NEW OTP, at this point, for the login to succeed.

Topic		Replies	Views
Limit OTP attempts in Form / Too Many Beats Help attack-protection , brute-force-protection	0	47	September 9, 2024
MFA Limits for OTP - Login Fails with Error "Too many failed codes. Wait for some minutes before retrying" Knowledge Articles mfa-sms , otp-code	1	3454	March 1, 2023
Wrong Attempts count and resend the OTP Help	0	1615	May 27, 2022
MFA Brute force protection Knowledge Articles	1	1108	May 29, 2023
Email OTP code submission through proxy, "You've reached the maximum number of attempts. Please try to login again" Help auth0	7	5239	May 6, 2024

SMS OTP attempt Limits

Problem statement

Solution

Related Topics