MFA for the Admin Console

Super admins can enable mandatory mulitfactor authentication (MFA) for all admins who access the Okta Admin Console.

HealthInsight task recommendation

Okta recommends	Enable MFA for the Okta Admin Console.
Security impact	Critical
End-user impact	None

Enable MFA for the Admin Console

1. In the Admin Console, go to ApplicationsApplications.

2. Open the Okta Admin Console app.
3. Go to Sign OnUser authentication, and click View policy details. The app sign-in policy for the Admin Console opens.
4. In this policy, go to Admin app policyActionsEdit. The Edit rule window opens.
5. Edit the rule. See Add an app sign-in policy rule.
   1. Go to User must authenticate with, and then select a 2-factor type option from the dropdown menu.
   2. Select options for Possession factor constraints are.

6. Click Save.

Related topics

HealthInsight tasks and recommendations

Enable MFA for the Admin Console