Unable to Configure True Passwordless (Email OTP + SMS OTP) Without Password-Based Login

nitins9868 · January 27, 2026, 3:47pm

Hello Auth0 Support Team,

I am facing a configuration issue while attempting to enable true passwordless authentication in my Auth0 application and would appreciate clarification on whether this is a platform limitation or a misconfiguration.

Goal
Enable passwordless authentication using:

Email OTP
Phone (SMS) OTP
with no username/password-based login exposed to users.

Observed Behavior

When the Database connection is disabled:
- Email OTP login works as expected.
- Phone/SMS OTP login is disabled and does not appear as an option.
When the Database connection is enabled:
- Phone/SMS OTP login becomes available.
- Email authentication defaults to email + password.
- Email OTP-based login is no longer available in Universal Login.

Expectation

I expected to be able to:

Enable both Email OTP and SMS OTP simultaneously
Prevent any password-based login (email + password)
Achieve a fully passwordless experience using Universal Login

Questions

Is a Database connection mandatory for SMS/Phone OTP by design?
If yes, is it currently unsupported to use Email OTP + SMS OTP together without exposing password-based authentication?
Is there an officially recommended approach to achieve true passwordless authentication across both email and phone?
Does achieving this require Custom Universal Login, multiple applications, or is it not supported at the platform level?

I would appreciate confirmation on whether this behavior is expected and, if so, guidance on the best-practice architecture to implement true passwordless authentication.

Thank you for your support.

vlad.murarasu · January 27, 2026, 7:02pm

Hi @nitins9868,

Welcome back to the Auth0 Community!

Email and password connections, as well as Passwordless connections, are both treated as database connections. The Universal Login Experience, by default, will display only one at a time. It requires a specific configuration of your Authentication Profile and Application Parameters. The behavior you’re seeing—where enabling a database connection forces a password field—is expected because the New Universal Login currently prioritizes the email password connection for “Identifier First” flows unless specifically instructed otherwise.

To answer your questions:

1.No, a Database connection is not mandatory for a passwordless connection screen by design. You can disable your Database connection if you do not wish to use it.

3.The official recommended approach would be to tell Auth0 what connection to use for login. You can check the following community post:

If you have any further questions, please don’t hesitate to reach out.

Have a good one,
Vlad

Topic		Replies	Views
Configuring Passwordless OTP to use SMS and Email with Universal Login Get Help	5	3188	September 19, 2022
How to setup configuration for email + password, email + email otp and phone + otp feature in Universal Login - Auth0 Get Help connections , passwordless-email-connection	3	123	July 12, 2025
About passwordless Get Help login-experience , new-universal-login-experience	3	68	April 22, 2025
Passwordless Login with SMS and Email Get Help emails , management-api	2	94	January 31, 2025
Show both passwordless sms and email login on universal login page Get Help lock , auth0	4	3506	April 4, 2024

Unable to Configure True Passwordless (Email OTP + SMS OTP) Without Password-Based Login

Related topics