How to show only Email MFA Option to Users In Yokohama

xiporalM · a month ago

We're going to be upgrading to Yokohama next month and I am starting to prep for mandatory MFA with this release. At my organization, we serve two distinct user bases, internal customers that sign in with SSO and outside customers who use

Rafael Batistot · a month ago

Hi @xiporalM

This tutorial might help you

https://www.reco.ai/hub/setting-up-mfa-in-servicenow

Bhuvan · a month ago

@xiporalM

Follow this knowledge article to setup MFA as per your requirement,

https://noderegister.service-now.com/kb?id=kb_article_view&sysparm_article=KB0859576

https://noderegister.service-now.com/kb?id=kb_article_view&sysparm_article=KB0656473

If this helped to answer your query, please mark it helpful & accept the solution.

Thanks,

Bhuvan

kaushal_snow · a month ago

Hi @xiporalM ,

Check below steps:

Option 1: Use an MFA Factor Policy for Email Only

Go to Multi-Factor Authentication > MFA Context in your instance.

Click on the Factor Policies tab.

Create a new policy (e.g named Email Only Policy).

Define conditions targeting your users

e.g.

user.role != 'snc_external'
or user.email ENDSWITH '@yourdomain.com'

When this policy evaluates to true, the user is immediately directed to the Email OTP validation screen and no other MFA options are shown...

Another Option: Hide the Multi Option Setup Screen Altogether

Set the system property: glide.auth.mfa.ui.v2.enabled = false

This removes the MFA option selection screen entirely, ensuring the user cannot see or pick other options...

____________________________________________________________________________________________________

If you found my response helpful, please mark it as ‘Accept as Solution’ and ‘Helpful’. This helps other community members find the right answer more easily and supports the community.

Thanks and Regards,
Kaushal Kumar Jha - ServiceNow Consultant - Lets connect on Linkedin: https://www.linkedin.com/in/kaushalkrjha/