MFA for the Admin Console

Super admins can enable mandatory mulitfactor authentication (MFA) for all admins who access the Okta Admin Console.

HealthInsight task recommendation

Okta recommends Enable MFA for the Okta Admin Console.
Security impact Critical
End-user impact None

Enable MFA for the Admin Console

  1. In the Admin Console, go to ApplicationsApplications.
  2. Open the OktaAdmin Console app.
  3. Go to Sign OnUser authentication, and click View policy details. The Authentication policy for the Admin Console opens.
  4. In this policy, go to Admin app policyActionsEdit. The Edit rule window opens.
  5. Edit the rule. See Add an authentication policy rule.
    1. Go to User must authenticate with, and then select a 2-factor type option from the dropdown menu.
    2. Select options for Possession factor constraints are.

  6. Click Save.

Related topics

HealthInsight tasks and recommendations

Enable MFA for the Admin Console