Auth0 Home Blog Docs

The oob_code doesn't match the mfa_token

After having MFA up and running successfully.
User want to add a new phone number/change the device, we remove the old enrollment (with success) and associate a new (with success as well). Up to there everything is fine (we get a new mfa_token and a new oob_code) which we use to verify along with the new binding_code (sent to the new device), but the verification fails:

{"error":"invalid_request","error_description":"The oob_code doesn't match the mfa_token"}

Any help, much appreciated :slight_smile:

1 Like


We are still waiting for a response in the original post. Do you think you can provide us more information?


1 Like