Factor Enrollment

Trying to enroll a sms factor and getting the following error:

{
“errorCode”: “E0000001”,
“errorSummary”: “Api validation failed: factorEnrollRequest”,
“errorLink”: “E0000001”,
“errorId”: “oaeXvPAhKTvTbuA3gHTLwhREw”,
“errorCauses”: [
{
“errorSummary”: “Factor not allowed for the user based on the Multifactor policy.”
}
]
}

However, based on the list of supported factors, sms is on the list
Doc: https://developer.okta.com/docs/reference/api/factors/#list-factors-to-enroll

[
{
“factorType”: “call”,
“provider”: “OKTA”,
“vendorName”: “OKTA”,
“_links”: {
“enroll”: {
“href”: “”,
“hints”: {
“allow”: [
“POST”
]
}
}
},
“status”: “NOT_SETUP”,
“enrollment”: “OPTIONAL”
},
{
“factorType”: “email”,
“provider”: “OKTA”,
“vendorName”: “OKTA”,
“_links”: {
“enroll”: {
“href”: “”,
“hints”: {
“allow”: [
“POST”
]
}
}
},
“status”: “NOT_SETUP”,
“enrollment”: “OPTIONAL”,
“_embedded”: {
“emails”:
}
},
{
“factorType”: “sms”,
“provider”: “OKTA”,
“vendorName”: “OKTA”,
“_links”: {
“enroll”: {
“href”: “”,
“hints”: {
“allow”: [
“POST”
]
}
}
},
“status”: “NOT_SETUP”,
“enrollment”: “OPTIONAL”
},
{
“factorType”: “push”,
“provider”: “OKTA”,
“vendorName”: “OKTA”,
“_links”: {
“enroll”: {
“href”: “”,
“hints”: {
“allow”: [
“POST”
]
}
}
},
“status”: “NOT_SETUP”,
“enrollment”: “OPTIONAL”
},
{
“factorType”: “token:software:totp”,
“provider”: “OKTA”,
“vendorName”: “OKTA”,
“_links”: {
“enroll”: {
“href”: “”,
“hints”: {
“allow”: [
“POST”
]
}
}
},
“status”: “NOT_SETUP”,
“enrollment”: “OPTIONAL”
}
]

Am I missing something?

Hi @mremkiewicz! Please open a support ticket through an email to support@okta.com with this issue. One of our Support Engineers will be happy to help review your current MFA policies to narrow down what is missing.