App ID now supports multi-factor authentication (MFA) to confirm an app user’s claimed identity with a one-time code sent through email as well as through SMS.
By requiring multiple factors during sign in, you can increase the security of user authentication to your apps. With Cloud Directory for IBM® Cloud App ID, the first factor is the Cloud Directory user's password, which they normally use to sign in. The second authentication factor is a one-time code that App ID sends to the user either as an SMS or email. App ID uses a combination of both factors to verify the identity of a user. (Note: If you're using enterprise sign-in with SAML 2.0 or social login, you can enable MFA through that identity provider.) To try the new features in App ID, visit the Console.