When multi-factor authentication (MFA) is enforced, all users in your organization will be required to provide a six-digit authentication code in addition to their login credentials. To provide the code, they need to register a MFA device with VMware Cloud services. Organization members who fail to provide a valid MFA code will be denied access to the organization.

If you are an organization owner of a federated domain, you do not control MFA for your organization. MFA for federated domains is configured by an Enterprise Administrator on the identity provider that your company is using. This procedure applies only to non-federated domains.

Prerequisites

  • You must have an organization owner role in the organization.
  • You must have registered an MFA device with VMware Cloud services so that you don't lock yourself out of the organization after enforcing MFA. For detailed instructions, refer to How do I secure my account using multi-factor authentication.

Procedure

  1. Log in to Cloud Services Console and click Organization > Authentication Policy.
  2. In the Multi-factor authentication section, switch the toggle button so its color changes to green.

Results

MFA is now enforced and all members of your organization will be required to register an MFA device and provide an MFA token at login.