Configure tenant-specific Multi-Factor Authentication (MFA) settings and compliance policies that define which authentication factors that you want to allow.
To define MFA settings in Oracle Identity Cloud Service, you must be assigned to either the identity domain administrator role or the security administrator role.
- In the Oracle Identity Cloud Service console, expand the Navigation Drawer, click Security, and then MFA.
- To enable MFA, select the factors that you want to enable for your users. You must then either edit the default sign-on rule or add a new sign-on rule for MFA.
- Use the Trusted Device(s) section to configure trusted device settings. Similar to “remember my computer,” trusted devices don’t require the user to provide secondary authentication each time that they sign in (for a defined time period)..
- Use the Factors and Login Rules sections to configure the number of factors your users can enroll in and the number of times you want to allow a user to incorrectly provide MFA verification before they are locked out.
- Click Save, and then click OK in the Confirmation window to save the configuration.
- (Optional) Click the Configure link for each MFA factor to configure them individually.