Configuration to enforce MFA for all users

Administrators can configure IAM to enforce multi-factor authentication (MFA) for all users. In the application-mfa.yaml file, the following property should be configured. By default, it is set to false:

multi-factor-mandatory:  ${IAM_MULTI_FACTOR_MANDATORY:true}

When multi-factor-mandatory is set to true, users will be prompted to set up MFA during login.

After successfully enabling MFA, the user will be redirected to the logout page. To access the application again, the user must log in using MFA.