API for MFA Auth details

Is there an API to find user did MFA AUTH during login ? We want to find out post login did user had MFA flow during the login

One option is to check (via CORS) https://oktaDomain/api/v1/sessions/me, see docs here, which will return the lastFactorVerification timestamp for the user currently logged in.

Alternatively, if you are working on an OIDC app, you can check the amr claim in the ID Token to get details about which authentication method was used.

If you’re not trying to do this from the client side, another option is to check in System Logs for a user.authentication.auth_via_mfa eventType

1 Like