Adding a user or group for MFA to a role with an Admin Portal-specified policy

Offline MFA mode is not triggered during logon to the computer once the agent has successfully connected to the cloud. Logon will fail if the cloud fails to authenticate the user, the user is not allowed to perform the MFA logon, or if the user is not assigned to any profile in the portal.

To add a user or group to a role in the Admin Portal

  1. Create a new role or double-click an existing role that is policy-specified.
  2. Click Members > Add.
  3. Enter a search string to locate the Active Directory groups or users you are using that require multi-factor.
  4. Select the group or user and then click Add.

  5. Click Save.