Adaptive Multi-Factor Authentication
Enhance the security of your app with contextual step-up authentication using a broad set of second factors.
87%
of US CISOs name MFA as top IAM priority
81%
of hacking incidents used stolen or weak passwords
$6 billion
annual loss as a result of account takeover
Are you a developer?
Contextual policies
Enforce MFA only when it is necessary based on a wide array of signals
Contextual access management
Set intelligent access and authentication policies based on login context
Location Context
- New city, state, or country
- New geo-location
- Impossible travel patterns
Device Context
- Known device recognition
- Device management
Network Context
- New IP
- Specified IP zones
- Network anonymisers
Risk Context
Create policies based on risk signals seen across Okta’s global dataset, such as high risk IP addresses
Respond to anomalous login behaviour with Risk-Based Authentication
Okta’s machine learning capabilities allow you to minimise the need for prescriptively creating access policies. With Risk-Based Authentication, Okta establishes a baseline login behaviour for each individual user, and responds to anomalous activity with the appropriate set of strong factors for both high and low risk login attempts.
Password only
Password + Okta Verify with Push
Okta Verify + U2F
Passwordless Authentication
Eliminate the risk of password-based attacks and deliver a delightful user experience using passwordless authentication.
Leverage a range of passwordless authentication options for customers using email magic links, WebAuthN or factor sequencing.
Passwordless authentication helps you:
- Secure account authentication from credential attacks
- Simplify user enrolment
- Delight users with one-click or one-touch authentication
- Reduce support costs associated with password management and account recovery
Explore passwordless authentication ›
Deploy policies by group
Add high risk users to specific groups that can be used to deploy AMFA policy based on risk or business policy
Pre-authentication sign-on policy evaluation
Stop brute force attacks in its tracks by evaluating Okta’s sign-on policies before credential evaluation thereby reducing the likelihood of account lockouts and improving user experience.
Embeddable MFA
Add a second level of security to your application with multi-factor authentication
Support for a range of factors
- SMS
- Voice
- Security question
- Google Authenticator
- Okta Verify
- Okta Verify with Push
- OTP tokens and authenticators
- 3rd party MFA providers
- FaceID, TouchID, Android Biometrics
Developer and operationally efficient
MFA wizard
Quickly and seamlessly integrate Okta MFA into any web app
Hosted sign-in widget
Pre-built UI for MFA enrolment and enforcement
REST APIs
For ultimate customisation, leverage the Okta REST API to deploy MFA at login or post-login for high assurance scenarios
MFA for third-party IDP solutions
Integrate with your existing non Okta IDP solution to deploy MFA
Easy management
Reduce support costs with self-service factor management
Robust reporting
Leverage user AMFA history for account takeover investigations or risk analysis
Real-time dashboard and system log
Real-time visibility and anomalous behaviour reports. Push real-time events to security tools and communication channels with Event Hooks.
Trusted by
Resources
Okta AMFA: Protect Against Account Takeover and Fraud
Learn about Okta's Adaptive Multi-Factor Authentication product and how it can protect against various forms of consumer account takeover and fraud.
One-Minute Whitepaper: The Anatomy of Account Takeover Attacks
Learn about the most common methods used to execute account takeover attacks and what an organisation can do to protect against them.
Adaptive Multi-Factor Authentication
To learn more, go to the US version of our website.