leafleafleafMan illustration
Updated on November 25, 2025
Repository

Global MFA Policy

Estimated reading: 2 minutes 1406 views

What is a Global MFA Policy? A Global MFA Policy in Visual Guard is a centralized set of rules and settings that define how MFA is applied across all applications and users within an organization.

The MFA (Multi-Factor Authentication) Global Policy defines the default authentication behavior for all users within Visual Guard. It allows administrators to enforce or relax MFA requirements system-wide, based on organizational security needs.

Purpose
This policy ensures consistent MFA enforcement across the entire environment, regardless of individual user or role configurations.

Configuration Options

  • Enable MFA for all users: Forces all users to authenticate with an additional factor (e.g., OTP, mobile app).
  • Allow login without MFA if user is not enrolled: If enabled, users who are not yet enrolled in MFA can still authenticate using only their primary credentials.
  • Block login for users not enrolled in MFA: If disabled, users without MFA enrollment will be denied access.

Usage Notes

  • This policy applies globally and overrides per-user MFA settings where applicable.
  • Changes to the policy take effect immediately after saving.
  • Administrators should ensure that enrollment options are clearly communicated to users before enforcing strict MFA rules.

In Winconsole to edit the global MFA policy follow the below steps.

Step 1: Click on the Repository –> you will see the page with details of the repository

Step 2: On the bottom left corner you will see the Edit Global MFA Policy link

Step 3: Fill in the required details.

  • Select the type of method you are opting for the security.
    • OTP via email or phone
    • Secure link via email or phone
  • The number of Grace logins (allows users a limited number of logins, or a period of time, to access a system without completing the usual authentication requirements) you would like to provide.
  • Provide the setting required.-
    • Scope: choose where you want the setting to reflect either under the whole Repository or specific Application
    • Duration: You can mention the time till when you want this feature to be active till
  • Provide the enrollment URL information
MFA – Multi Factor Authentication

Recently Viewed articles

Powered By Visual-Guard