Enable MFA for only the Vendor Portal

Mayank Rustagi · ‎07-17-2023

Is there a way to only enable MFA for just the Vendor portal or for only the Vendor contacts?

Edoardo Gattei · ‎05-22-2025

have you being able to come up with this in the end?

Brian Lancaster · ‎05-22-2025

Yes that would require anybody with the role to always use MFA not matter where they are logging in. I'm not sure there is a specific way to do it with ServiceNow MFA to do it only for a specific portal. How do they login? Are they using a local ServiceNow account or do you have AD accounts for these users and they are going thought your own identity provider?

From a security perspective if these are external users they should always go thought MFA>

Randheer Singh · ‎08-02-2023

Interesting use case, @Mayank Rustagi
I believe you want to enforce MFA whenever a user accesses the Vendor portal.

What is the expected behavior in this scenario?

1. User logs in to the KB portal, does not undergo MFA, and establishes the logged-in session.

2. Now, in the logged-in session, navigates to the Vendor portal. In this case, do you think the user should see the MFA?

Thanks,

Randheer