This page provides you with information on multi-factor authentication.
Multi-factor authentication (MFA) is a security process in which a user is required to provide two or more authentication factors to verify their identity. The MFA workflow is as follows:
- Generate token - v1/token/generate
- Use the session ID and generate MFA OTP - v1/mfa/OTP/generate
- Validate the OTP - v1/mfa/OTP/validate
By default, to set the MFA password and reset it you need to generate OTP and validate it. But, you can define the configuration and disable it as required.
Configuration | Description | Default value |
---|---|---|
CONF_SKIP_OTP_VALIDATE | If enabled, disables the requirement for OTP validation during the MFA password set-up. | FALSE |
CONF_SKIP_OTP_VALIDATE_RESET | If enabled, disables the requirement for OTP validation during the MFA password reset. | FALSE |
You can also enable the OTP validation for MFA password set-up and disable the OTP validation for password reset or vice-versa.