--- title: Configuring strong authentication methods (MFA) description: This section describes the requirements, limitations, and configurations that are available for each authentication method. component: pingone page_id: pingone:strong_authentication_mfa:p1_configuring_strong_authentication_start canonical_url: https://docs.pingidentity.com/pingone/strong_authentication_mfa/p1_configuring_strong_authentication_start.html revdate: September 5, 2024 page_aliases: ["p1_mfa_landing.adoc", "getting_started_with_pingone:p1_mfa_landing.adoc", "mfa_for_workforce_pingid:p1_p1pid_start.adoc", "p1_mfa_applying_mfa_only_policy.adoc", "ROOT:p1mfa__introduction.adoc", "getting_started_with_pingone:p1_mfa_configuring_sign_on_policy.adoc", "getting_started_with_pingone:p1_mfa_enrolling_user_authentication_device.doc", "getting_started_with_pingone:p1_mfa_mfa_mfa_using_mobile_application.adoc", "getting_started_with_pingone:p1_mfa_updating_mfa_sign_on_policy.adoc"] section_ids: which-authentication-method-do-you-want-to-add: Which authentication method do you want to add? --- # Configuring strong authentication methods (MFA) This section describes the requirements, limitations, and configurations that are available for each authentication method. To add an authentication method make sure you have already created: * A PingOne account with the relevant services (Workforce or Customer). ## Which authentication method do you want to add? Configure the authentication methods with which your users can authenticate. All methods are enabled and configured in the multi-factor authentication (MFA) policy, but some authentication methods require additional configuration steps outside of the MFA policy. You can find details in the relevant sections: * Workforce and Customer options: * [FIDO2 (Passkeys)](p1_strong_auth_configuring_fido.html) * [Authenticator app](p1_strong_auth_configuring_authenticator_app.html) * [Email](p1_strong_auth_email.html) * [SMS or voice](p1_strong_auth_sms_voice_authentication.html) * [OATH token](p1_pid_oath_tokens.html) * [Native mobile application](../applications/p1_edit_application_native.html) | | | | - | ----------------------------------------------------------------------------------------------------- | | | For Workforce environments, native mobile applications are only available in the Singapore geography. | * Workforce only: * [PingID mobile app](p1_configuring_pid_mobile_application.html) * [YubiKey](p1_pid_yubikey.html) * [PingID desktop app](p1_pid_desktop_app_start.html) * [PingID desktop app (legacy)](p1_pid_desktop_app_v1.html) * Customer only: * [WhatsApp authentication](p1-strong-auth_whatsapp.html) For Workforce environments, after configuring the relevant authentication methods, you can create and apply a [registration and authentication policy](p1_configuring_pid_policy.html).