- Go to Experiences > Authentication Policies.
- Click + Add Policy.
- In the Policy Name field, enter a name for your policy.
- In the Step Type list, select Multi-factor Authentication.
-
In the Available Methods section, select the allowed MFA
methods for end users.
The following image shows all of the available MFA methods.Note:
To enable Mobile Applications, go to Connections > Applications and configure a native application.
-
In the None Or Incompatible Methods section, select
Bypass.
Important:
If Block is selected, users without a paired MFA device can't sign on.
- In the Required When section, select when re-authentication will be required, such as when a user is accessing the application from an out-of-range IP address.
- Click Save.