Question

Has anyone disabled Okta’s Security Questions as described here? If so, what self-service recov...

  • 2 September 2020
  • 4 replies
  • 14 views

Badge

Has anyone disabled Okta’s Security Questions as described here? If so, what self-service recovery options have you set? https://devforum.okta.com/t/disable-the-security-question-and-answers-for-a-user/7655



🗨 Link to Slack thread

4 replies

Userlevel 2
Badge +2

We are disabling Security Question and SMS. We'll be requiring Okta Verify and Authenticator (recommend Authy for restoration functionality on new mobile devices) with optional biometric and security key.

Badge

i think those are 2 different things.

there are security questions to recover your password (you can also use sms or email)

there are security questions for MFA (you can also use Okta Verify, TOTP, etc)

Userlevel 2
Badge +2

Ah. My mistake! Sorry about that. Need more coffee 😬

Userlevel 2
Badge +2

Since we don't have that option (like in the linked post) we had always used Email verification for self-service.

Reply