sjjmz (sjjmz) asked a question.
Can we have email as the only Authentication with security question for Recovery.
Hi,
Are we able to configure as such:
- Email to be the only authenticator which is used for authentication and recovery
- Security Question to be used for recovery only
When users enroll the first time, they are require to set up email and security question before they can sign in.
In the event if users forgot their password, they can perform self-service password recovery by answering the Security Question only.
Hi @sjjmz (sjjmz) , thank you for contacting Okta Community!
You can change this from the Okta Admin Dashboard side menu > Security > Authenticators. The Authenticators list should include Email. From Actions, select Edit. You can switch from “Recovery” to “Authentication and Recovery”. Next, you need to set up a new Password policy or a new rule under an existing Password policy.
Here are some articles that could help:
Authentication policies
Manage self-service password reset
Regards.
—
Help others in the community by liking or hitting Select as Best if this response helped you.
I tried with enrolling a new user.
The new user was enrolled without security question being enroll as mandatory.
Hence, was wondering what step i would have miss.