<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D54z00006sRgDXCA0Okta Classic EngineSingle Sign-OnAnswered2021-03-18T19:28:16.000Z2021-03-15T18:44:45.000Z2021-03-18T19:28:16.000Z

PruthviK.03023 (Customer) asked a question.

March 15, 2021 at 6:44 PM
set sms and email mfa as active when user is registered

I am currently working on react native client app with custom user authentication (MFA) and authorization and i have these following configuration for a React Native application in the OKTA admin account

 

  1. Authentication - Sign On Policy :: Added Specific Group, Added Rule ( Prompt For Factor, Per Device, Remember Device By Default is checked)
  2. Multi factor :: SMS Authentication, Email Authentication is set to Active
  3. Multi factor - Factor Enrollment :: Added Custom Policy set SMS, Email Authentication to Required, Added Rule :: Set do not enroll in Enroll in multi-factor ( As I don't want users to enroll by default MFA Authentication should be set to ACTIVE with that users can select any of the authentication factors and get authenticated for the first time login using the unique device token will be sent )
  4. Alongside I have also created custom authorization server test the token working perfect, assigned custom group to the native app

 

Now, I was successfully able to create a user via endpoint with api token {{url}}/api/v1/users (i am not using activate=false/true) with userName, lastName, firstName, email, primary email, primary phone number, mobile number, group id, credentials and getting success response.

 

When a new user created tried to login for the first time I was able to see MFA_REQUIRED (this is expected) but when I looked into the list of factors only email was set to active by default

 

"factors": [{"factorType": "email", "id": "xxxxxxxxxxxx", "profile": [Object], "provider": "OKTA", "vendorName": "OKTA", "verify": [Function anonymous]}], "policy": {"allowRememberDevice": true, "factorsPolicyInfo": {}, "rememberDeviceByDefault": false, "rememberDeviceLifetimeInMinutes": 0}, "status": "MFA_REQUIRED", "user": {"id": "xxxxxxxxxx", "passwordChanged": "2021-03-15T18:10:22.000Z", "profile": {"firstName": "xxxxxxxx", "lastName": "xxxxxxx", "locale": "en", "login": "xxxxx@xxxx.com", "timeZone": "America/Los_Angeles"}}}

 

Is there a way we can set the sms factor active on client app so that user will have a choice to select between multiple factors without enrollment

  • 1 answer
  • 853 views

  • User16113547307426273337 (Vendor Management)

    This is Mihai from Okta support.

     

    Unfortunately this is more of a question for a developer. You can post a question on the Okta Developer Forum or email the Okta Developer Support team at developers@okta.com.

     

    Best regards,

     

    Mihai

    Expand Post
This question is closed.
Loading
set sms and email mfa as active when user is registered