Ever try to log into an application with multi-factor authentication, only to realize that your phone was dead? It is incredibly frustrating to realize you either need to find a phone charger or dig up your MFA recovery code just to check your email.

The problem is even worse for the app owner. When a user can't log in, they can't interact with your app. This can result in lower adoption, engagement, and money, especially for consumer-facing applications.

With the latest release of Universal Login, Auth0 can solve this problem with email as a backup MFA factor.


How Does it Work?

When a user tries to authenticate and is prompted for MFA, they can click try another method and select Email. Auth0 will then send an email to the user's verified email address with a one-time password, which they can use to authenticate.

There are a few prerequisites for email MFA:

Auth0 Management Dashboard showing Email MFA enabled

What about Email as the Only MFA Factor?

Currently, email MFA is only available as an optional backup multi-factor method. The user must have another method as the primary form of multi-factor authentication. Enabling email MFA as a standalone multi-factor method is on the Auth0 roadmap.

How Do I Get Started?

To try email MFA with the New Universal Login experience out, sign up for Auth0 for free and click on Multifactor Auth in the management dashboard. Follow these instructions for enabling Email MFA.

About Auth0

Auth0 is the first identity management platform for application builders, and the only identity solution needed for custom-built applications. With a mission to secure the world’s identities so innovators can innovate, Auth0 provides the simplicity, extensibility, and expertise to scale and protect identities in any application, for any audience. Auth0 secures more than 100 million logins each day, giving enterprises the confidence to deliver trusted and elegant digital experiences to their customers around the world.

For more information, visit https://auth0.com or follow @auth0 on Twitter.