You can use this group policy to configure offline multi-factor authentication for users that are required to use multi-factor authentication to log on to their computers in the event that the agent cannot connect to the Centrify Identity Platform.
There are three configuration possibilities:
- If an offline MFA profile is setup, prompt for offline MFA. Otherwise don’t allow to proceed.
- If an offline MFA profile is set up, prompt for offline MFA. Otherwise, allow to proceed and remind user to set up the offline MFA profile.
- Allow to proceed. Don’t prompt for offline MFA.
If this policy is set to Disabled or Not Configured, the default is the second option.