MFA for forget password Skip to main content
https://support.okta.com/help/answers?id=9062a000000xa6qqas&refurl=http%3a%2f%2fsupport.okta.com%2fhelp%2fanswers
How satisfied are you with the Okta Help Center?
Thank you for your feedback!
How satisfied are you with the Okta Help Center?
1
2
3
4
5
Very Dissatisfied
Very satisfied
Enter content less than 200 characters.
Ask Search:
Rohit RoyRohit Roy 

MFA for forget password

How can we configure MFA for forget password and for resetting the password.
I want that if the user is not in particular zone or network and if they try to reset the password the second factor of auhentication is needed for them but if the user is in particular zone MFA is not needed for them.
Kevin TurnerKevin Turner (Okta, Inc.)
There currently is not an option to assign different change password policy options today. The user would have the default option to have two criteria requirements to be fullfilled. The first is email, and the second is to supply the answer to the password reset (registered) Q&A. You can optionionally configue to use an SMS or Voicecall instead of email notification under the "Security", "Authentication", "Password", policy configuration.
User-added image

Add a Rule

User-added image

Conditions can then be applied placed on zone.

User-added image
Rohit RoyRohit Roy
If I select pariticular zone for reseting password then what will happen to the users outside the network????????
Kevin TurnerKevin Turner (Okta, Inc.)
You would have to have different rules to cover the various connection locations. If no rule gets triggered then no password reset option would be available.