MFA - Wed, Feb 8, 2023
experience of Multi-Factor Authentication.
Multi-Factor Authentication (MFA)
is a method of authentication that requires the use of more than one factor to verify a user’s identity. MFA may include any two of the following:
- Something that you know, like a passcode.
- Something that you have, like a device.
- Something that you are, like your fingerprint.
Users are increasingly connected, accessing their accounts and applications from anywhere. As an administrator, when you add MFA on top of the traditional user name and password, you reduce the likelihood of online identity theft and fraud, which secures your business applications even if an account password is compromised.
Best practices and perform the steps.
Note: You must be assigned the identity domain administrator role to make changes in an identity domain.
- Before you enable MFA
- Create a test user in a test identity domain.
- Create a client application so that you’ve access to your identity domain using the REST API in case your sign-on policy configuration locks you out.
- When enabling MFA
- Don’t use EMAIL or Text message (SMS) authentication factors.
- Do use the Mobile APP passcode, Mobile app notification or Fast ID Online(FIDO) authenticators.