Configuring Multi-Factor Auth

When configuring the global login policies, Admins can enforce two-factor authentication (MFA) for admins and users when logging into any application or as part of a policy action when suspicious login behavior is detected.

Forcepoint ONE SSE supports a number of methods for MFA: security question, token via SMS or email, Authenticator Apps via verification code, and DUO Security (Push).