This section describes how to configure multifactor authentication profiles using CLI. You configure MFA profiles at the users mfa-profiles level. You can create multiple types of profiles:
-
MFA by TOTP: use a Time-based One Time Password (TOTP) token as the second authentication factor.
-
MFA by email: use a one-time password received by email as the second authentication factor.
-
MFA by SMS: use a one-time password received by SMS as the second authentication factor.
To create a multifactor authentication profile, use the following command:
Admin@nodename# create users mfa-profiles <parameter>
To delete a multifactor authentication profile, use the following command:
Admin@nodename# delete users mfa-profiles <mfa-name>
To display information about all or individual MFA profiles, use the following commands:
Admin@nodename# show users mfa-profiles Admin@nodename# show users mfa-profiles <mfa-name>