Enhanced Multiregion Login
- Services: IAM
- Release Date: June 27, 2025
For improved availability and security,IAM with Identity Domains now supports federated login, multifactor authentication (MFA), and lock status from replica regions.
-
When using OCI IAM as a service provider, we now support federated login from the replica region when the home region isn't available. This has been validated with the following identity providers (IdPs): OCI IAM, OKTA, Azure, and PingIDentity.
-
We now support all multifactor authentication from the replica region.Note
Multifactor authentication enrollment from the replica region is still not supported. -
If a user has a failed login attempt through the replica domain and is locked out, the user lock is stored for the replica domain. When the home region becomes available, the user lock status will be updated in the home region as well.