Multi-factor authentication (MFA)

{#if collection.mfa.enabled} Enabled {:else} Disabled {/if} {#if hasErrors} {/if}

This feature is experimental and may change in the future.

Multi-factor authentication (MFA) requires the user to authenticate with any 2 different auth methods (otp, identity/password, oauth2) before issuing an auth token. (Learn more) .

Enable

This optional rule could be used to enable/disable MFA per account basis.

For example, to require MFA only for accounts with non-empty email you can set it to email != ''.

Leave the rule empty to require MFA for everyone.