Option to Enforce Multifactor Authentication or Not in Non-Production Environments

In non-production environments, security administrators have an option to make Multifactor Authentication (MFA) mandatory or not for the users. For a user category, they can determine whether the associated users can sign in using their user name and password or they need to set up MFA. For production instances, this option is disabled.

1. On the User Categories page of Security Console, select a user category.
2. Click Two-Factor Authentication.
3. Click Edit.
4. Select Requires MFA and click Save and Close.

Note: While creating new categories, the Requires MFA setting that exists in the Default category automatically gets carried over to the new category. You can change it later if needed. 

In non-production environments, if users don't need to sign in using MFA, security administrators can deselect this option to not enforce MFA. 

Steps to Enable and Configure

You don't have to do anything to enable this feature. 

Access Requirements

To manage the MFA settings in Security Console, administrators must be assigned a custom role based on the IT Security Manager role.