The Zurich release has arrived! Interested in new features and functionalities? Click here for more

Multi-factor authentication with Email

ChrisF7
Tera Contributor

Friday

Hi,

 

As an admin, I want to make Multi-factor authentication with Email available for all users in our instance.

 

I've read Multi-factor authentication with Email and Configure Email as MFA factor and tested using a test non-admin user account but the option for MFA with email OTP doesn't appear for the user.

 

This is after setting the policy - Display Email OTP as an MFA Factor Policy, to Active.

 

I want all users to have the option to MFA with email, but I'm not clear whether I need to add Policy Inputs for this to work - if so, what should these be? (I don't think the article is clear enough of this.)

 

As I say, I want all users to be presented with the MFA with email option in the list of MFA options when they are setting up MFA for the first time.

 

Any help would be much appreciated.

 

Thanks,

Chris

 

0 Helpfuls
  • 179 Views
3 REPLIES 3

Ankur Bawiskar
Tera Patron
Tera Patron

Friday

@ChrisF7 

check this

Email as an MFA factor 

If my response helped please mark it correct and close the thread so that it benefits future readers.

Regards,
Ankur
Certified Technical Architect  ||  9x ServiceNow MVP  ||  ServiceNow Community Leader
0 Helpfuls

Ambuj Tripathi
ServiceNow Employee
ServiceNow Employee

Friday

To get the email OTP option on the setup page, there are only two conditions - user should have email address in the email field of sys_user table and user's notification should be enabled (user.notification = 2).

As you want to show Email to all the users, you don't even need to even setup or enable the Email Factor policy. It should be available to all the users by default.

0 Helpfuls

M Iftikhar
Mega Sage

Friday

Hi @ChrisF7

 

To enable Multi-Factor Authentication (MFA) with Email for all users in your ServiceNow instance, you need to configure the 'Display Email OTP as an MFA Factor' policy and associate it with the appropriate authentication policy context. Since you want this to apply to all users, you do not need to add specific Policy Inputs like roles or groups. Instead, ensure the policy is active and correctly linked within the MFA context of the adaptive authentication settings. This will present the Email OTP option to all users during their initial MFA setup.

 

For detailed steps, you can refer to the official ServiceNow documentation on configuring MFA with email:

https://www.servicenow.com/docs/bundle/zurich-platform-security/page/integrate/authentication/concep... 

 

Hope this helps!

 

Thanks & Regards,
Muhammad Iftikhar
If my response helped, please mark it as the accepted solution and helpful so others can benefit as well.

0 Helpfuls