Set Up and Enforce Multi-Factor Authentication with the Okta API

So, you’re building a custom app and you need to include support for multi-factor authentication (MFA). Did you know that Okta’s API can support multi-step MFA workflows?

The diagram below shows the primary authentication flows with MFA enrollment and enforcement enabled.

With API

Okta has a push-based verification app called Okta Verify. It’s available on the Google Play and Apple App stores. Okta Verify is similar to Google Authenticator, except it adds the additional feature of supporting push notifications. We think this strikes a really great balance between additional security and user experience.

I created a screencast to demonstrate how you can manage the whole MFA enrollment and enforcement process using the Okta API here or you can watch below:

Interested in learning more about secure authentication with Okta? Check out our Product Documentation, our hands-on Platform for Developers course, or any of these great posts from our developer blog:

Micah Silverman is a Senior Security H@X0R. With 25 years of Java Experience (yup, that's from the beginning), he's authored numerous articles, co-authored a Java EE book and spoken at many conferences. He's a maker, who's built full size MAME arcade cabinets and repaired old electronic games. He brings his love of all things Java and Developer Advocacy to you!