Which Provider Can Be Used with api.multifcator.enable() in Post-Login Actions

gabriela.pantea · August 20, 2024, 8:16pm

Overview

This article details which provider argument should be provided when calling api.multifactor.enable() as described in this document.

In most scenarios, use “any” as the provider - this will challenge the user for any of the enabled MFA factors on the tenant.

The other options are provided for primarily legacy purposes:

“The guardian and google-authenticator options are legacy settings that are kept for backward compatibility reasons and should not be used moving forward. We recommend using any instead. The google-authenticator option does not let users enroll a recovery code.” See Customize Multi-Factor Authentication Pages for reference.

If more control is required over which factor is challenged, see the Custrom MFA selection feature (requires New Universal Login):

Topic		Replies	Views
Action API Method Difference Between 'api.multifactor.enable' and 'api.authentication.challengeWithAny' Knowledge Articles	1	565	December 5, 2023
How to choose between Phone Message and Google Authenticator? Help mfa , phone-factor	0	851	August 18, 2023
Multifactor with both SMS and One-Time Password (Google Auth) Help mfa , 2fa	4	4274	May 1, 2019
Calling .enable() if they have MFA already enrolled or not? Help mfa , mfa-api	2	17	September 30, 2024
Post-login action and MFA Help mfa , mfa-prompt-new-experience	3	443	May 24, 2024