PingOne

Updating the MFA step in your sign-on policy using the admin console

Steps

  1. Go to Authentication → MFA.

  2. Locate and select your MFA policy.

    Result:

    The Details panel opens.

  3. Click the Pencil icon to enter edit mode.

  4. In the Allowed Authentication Methods section, select the Mobile Applications check box.

  5. Click Application.

  6. In the Application list, select your native app.

  7. Optional: Select the Auto Enrollment and Device Authorization check boxes:

    Auto Enrollment

    Allow automatic enrollment of the mobile application to MFA during the authentication flow.

    Device Authorization

    Allow users to securely sign on to the app on a trusted mobile device, without having to actively go through strong authentication, while a seamless MFA takes place behind the scenes.

    If the user has no usable devices, you can configure automatic enrollment as Bypass or Block.

  8. Click Save.

Next steps

Configure pushless and TOTP MFA for a mobile application