Using SMS passwordless login on recycled mobile numbers

dan.woda · June 29, 2023, 4:19pm

Welcome to the Auth0 Community!

Generally, SMS alone isn’t recommended for user authentication. We suggest protecting your users by requiring MFA on SMS passwordless accounts. This would reduce risk of intentional account takeover or inadvertent account takeover (due to recycled numbers).

Further reading: Passwordless Connections Best Practices

Hope that helps!

Topic		Replies	Views
Passwordless - Recycling of phone numbers Get Help auth0	4	2928	October 3, 2019
Enforce Unique Phone Number per User for SMS MFA Knowledge Articles sms , phone-number , mfa-enrollments	1	1667	October 3, 2023
Multi factor authentication enrollment without prompting user for phone number? Get Help mfa , login , mfa-sms	10	8171	September 10, 2020
How to verify phone number without passwordless and MFA Get Help management-api , users	3	2065	July 20, 2023
Want to implement Authorization with Email Password and MFA Get Help	2	1747	October 11, 2021

Using SMS passwordless login on recycled mobile numbers

Related topics