[OCI] How to Disable Multi-Factor Authentication (MFA) in Oracle Cloud Infrastructure (OCI)?

 



Oracle Cloud Infrastructure (OCI) offers Multi-Factor Authentication (MFA) to enhance account security. However, there may be situations where you need to disable MFA — such as during device lost, access handover etc.

In this blog post, we’ll walk you through the safe and recommended ways to disable MFA in OCI



🔐 What is MFA in OCI?

Multi-Factor Authentication adds an extra layer of security by requiring users to enter a code from an authenticator app or SMS in addition to their password. This helps protect accounts from unauthorized access.

However, resetting it may be necessary if:

  • A user lost access to their device

  • Admins are resetting access for new ownership

  • You're testing or automating login flows in a controlled environment

⚠️ Important Note: Disabling MFA reduces account security. Always re-enable it once your task is complete.


🔄 Disable MFA

  • Sign in to the OCI Console as a user with Administrator privileges.
  • Go to Navigation Menu  Identity & Security  Domains

  • Click on the domain for which you want to disable MFA

  • Click on Security

  • Navigate to Sign-on policies and then click Security Policy for OCI Console

  • Edit both the Sign-on rule:

  • Click on continue

  • Uncheck the Prompt for an additional factor

  • Check the Consent box and select the justification and then click on Save Changes button

  • Similarly perform the same steps for other sign-on policy and then MFA will be disabled. So, next time when you sign-in it will not ask for any MFA

Comments

All Categories

Show more