6ebkd (6ebkd) asked a question.
Implement Okta for an application that can't natively implement MFA
Hi Guys, I need to know, if there is an application that cannot natively implement MFA, is it possible to implement MFA Number Matching to the server/apps using Okta with absolutely no changes from the application side? for example the type of application is Virtual Application and connected to Active Directory for checking credential. Please also provide information about whether MFA number matching is built into Okta or can also be integrated with AzureAD/EntraID for the MFA Number Matching.
Hello @6ebkd (6ebkd) Thank you for reacting out to our Community!
If the application is using SAML/OIDC/WS-Fed where the user is sent to Okta for the authentication process, then MFA can be implemented. However without a way to force the user to reach Okta for the authentication there is no way force an MFA from Okta.
Please also see out MFA policy doc below:
https://help.okta.com/en-us/content/topics/security/policies/configure-mfa-policies.htm
https://help.okta.com/en-us/content/topics/security/policies/about-app-signon-policies.htm
Community members help others by clicking Like or Select as Best on responses. Try it today.
Earn Today: New Okta Community Badges Have Arrived
Ask the experts about Okta Privileged Access