Configure multi-factor authentication for logon when the agent cannot connect to the Platform

You can use this group policy to configure offline multi-factor authentication for users that are required to use multi-factor authentication to log on to their computers in the event that the agent cannot connect to the Centrify Identity Platform.

There are three configuration possibilities:

  • If an offline MFA profile is setup, prompt for offline MFA. Otherwise don’t allow to proceed.
  • If an offline MFA profile is set up, prompt for offline MFA. Otherwise, allow to proceed and remind user to set up the offline MFA profile.
  • Allow to proceed. Don’t prompt for offline MFA.

If this policy is set to Disabled or Not Configured, the default is the second option.