SimonM.28559 (Customer) asked a question.
Different apps, different 2FA requirements
Hi All,
I have configured 2 apps, each with their own 2FA requirements, one email verification and the other Google auth.
All works well until there's a user with access to both.
They log into app 1 with email verification, and then get an error for app 2 because they haven't been forced into google auth setup.
Have got around this by allowing email to be a valid 2FA for app2, but am not sure if this is the correct way round the issue. As I'm not sure how this will not effect new user's accessing app2. Will they now be able to select email as an authentication type?
Thanks,
Simon
Hello @SimonM.28559 (Customer) Thank you for reacting out to our Community!
Is it safe to assume that when you mention 2 applications with their own MFA, are you talking about enrolment policy where you select the application? If so, then that would be an enrolment policy not an application access MFA.
I looked on my end and I was not able to find any feature that would allow you to specify a specific MFA at application level. Are you using a specific feature?
Also if you gave access to users for email MFA, they will be able to use that to authenticate.
Hope this helps!
Hi Paul,
Yes, sorry, quite new to this, so the terminology is a bit vague.
Have had to set the application enrolment for app2 to be email / authenticator to allow that user to use both applications.
Will this give any new users to that application the ability to use email as their MFA option?
If so, how do I work around this?
Thanks,
Simon