Configure MFA

Configure MFA

Multi-factor authentication (MFA) adds an additional layer of security to your organization. When MFA is enabled, your users will have to verify their identity not only with their password, but also with a second factor. The second factor could be either an authenticator app like Zoho OneAuth or an SMS-based OTP.

When MFA is enabled for a user, they will not be able to sign in without setting up their preferred authentication mode and verifying themself. You can configure the list of MFA modes your users can choose from.

To configure MFA:
  1. Sign in to the Zoho One Admin Panel.
  2. Go to Security, click Security Policies, then click on the policy you want to configure.
  3. Go to Multi-factor Authentication, then enable Multi-factor Authentication.
  4. Select the authentication modes that you want your users to choose from. The available authentication modes are:
    • Face ID / Touch ID (through Zoho OneAuth)
    • Push Notification (through Zoho OneAuth)
    • Time-based OTP (through Zoho OneAuth)
    • QR Code (through Zoho OneAuth)
    • Google Authenticator (or similar authentication apps)
    • Yubikey
    • SMS
  5. Enable Allow backup recovery codes to let your users generate backup verification codes. These are single-use codes that can be used to sign in to your Zoho One account when you've lost your credentials, MFA devices, and all other recovery methods. Learn more about backup verification codes.
  6. Click Update Policy.

    • Related Articles

    • Multi Factor Authentication (MFA)

      Secure your Zoho Vault account further with multi-factor authentication (MFA). There are numerous authentication methods to choose from, as listed below. Common options SMS Voice call Google authenticator Using Zoho OneAuth OneAuth is Zoho's ...

    • Troubleshoot MFA related issues

      Introduction If you have set up multi-factor authentication (MFA) to protect your Zoho account and have issues signing into your account, we will help you regain your account access. The first thing you need to do after regaining account access ...

    • Enforce Multi Factor Authentication (MFA)

      Secure your organization's Zoho Vault accounts further with multi-factor authentication (MFA). You can mandate that all users of your organization access Zoho Vault with an additional factor of authentication across all devices by enforcing MFA. ...

    • Reset password/MFA

      Sign in to the Zoho One Admin Panel. Password and MFA can be reset either for a single user, or for multiple users. To reset password or MFA for a single user, click Users, then click on the user. Next, click Reset Password or Reset MFA. To reset ...

    • Introduction to MFA

      What is Multi-factor Authentication? Multi-factor Authentication (MFA) is an additional identity verification step that can secure your account from potential intruders. With MFA enabled, in addition to entering credentials, users must verify their ...