Enroll sms factor api is returning 403 after sending multiple requests for the same user

Hi,

I am integrating the SMS factor enroll API in an application. I’ve been testing some scenarios with the enroll factor endpoint and I noticed that if I send a certain number of requests for the same user, I eventually get this 403 response.

{
    "errorCode": "E0000150",
    "errorSummary": "You have reached the limit of sms requests, please try again later.",
    "errorLink": "E0000150",
    "errorId": "",
    "errorCauses": []
}

Do you happen to know what is the timeframe to try again? I know that there is a period to send the sms verification of 30 seconds. But, after I try more than 10 or 11 times sending the passcode I start getting that 403 error. Even waiting more than 5 mins I still get the same error.

You are likely running into our SMS rate limits, as described here: Additional rate limits | Okta Developer

hmm, I do not think that is a rate limit, As I commented in my question, I tried sending multiple MFA passcode with a time of 30 seconds between every call to avoid that issue which we are aware of. The edge case for this is that when I tried 10 or more times I got the error above.