Vonage Business Cloud AU Support

Vonage Business Communications Support

Enter a search topic
Vonage Support
Expand All | Collapse All

Enforce Multifactor Authentication

Updated: 6/3/2026 11:29 AM

A Multifactor Authentication (MFA) policy requires users to provide two or more verification factors to access certain online resources; the goal is to safeguard your systems against unauthorized access.

Two-Factor Authentication [UK | AU] is a form of MFA that requires two steps to verify a user: a password and a second identifier, such as a verification code. MFA is not limited to 2FA and can employ Passkeys (Coming Soon!), which bypass traditional passwords for a faster, more secure sign-in experience using your device’s biometrics (fingerprint/face) or PIN.

When you enforce MFA, you enable a Global MFA Policy. This policy is an account-wide security setting that requires all eligible users within your organization to use this verification method to sign in. It allows Account Administrators to protect the entire account uniformly and reduces threats like phishing and credential stuffing while ensuring compliance with modern security standards. 

Communicate and Prepare for a Global MFA Policy

You must communicate and prepare for this global policy, as it is a change that affects and requires action from your users. 

  1. Inform all users that Multifactor Authentication (MFA) is a requirement and include details on how they will be affected.
    .
    • All active sessions for users will be terminated unless Single Sign On (SSO) or 2FA is enabled. 
    • All users who are signed out are prompted to set up a second verification method on their next sign-in attempt. 
  2. Make every effort to deploy your MFA policy enablement during off-business hours to minimize disruption to your users.
Deploy Your Global MFA Policy

An Account Administrator must turn on the global MFA policy:

  1. Sign in to the Admin Portal.
  2. Click Account, then click Security Settings (left navigation).
  3. Scroll to the Global Authentication Policy section.
  4. Review the Enforce MFA Setup details.
  5. Toggle the Enforce MFA Setup option to On. A Confirmation modal is displayed.
  6. Review all information, then click Enable
Understand Post-Deployment User Activity 
  • All non-SSO or non-2FA users are guided through the MFA setup flow on their next sign-in attempt.
  • Existing SSO users are not affected by this change; their authentication method is managed exclusively by their Identity Provider (IdP).
  • Existing 2FA users are not affected by this change as they already meet the MFA policy. 

 

 

Did this article answer your question?