authentication wso2 fido-u2f wso2-identity-server

Multi Factor Authentication WSO2

I am trying to achieve MFA in WSO2. I made changes as per the below link but nothing worked, https://docs.wso2.com/display/IS510/Multi-factor+Authentication+using+FIDO

I am a bit confused, do we need a physical U2F device to achieve this MFA? Are there any other multi factor authentication methods/tutorials available for WSO2?

Solution

Yes, as @maduranga has explained you need a physical U2F device for MFA with Fido. Fido is the only out-of-the-box MFA authenticator that ships with WSO2 Identity Server 5.1.0.

However, you can find a growing number of MFA authenticators at WSO2 Store: https://store.wso2.com/store/assets/isconnector

WSO2 IS has a highly extensible multi-step based authentication framework. So you can easily write your own MFA authenticator without much hassle and plug it to that framework.

'git push heroku master' is still asking for authentication
Should I use PKCE for OpenID Connect with Native Desktop Application?
Keycloak authentication with `react-oidc-context`: "No matching state found in storage" after page refresh
Bearer Authentication in Python
how to completely destroy client side session with NextAuth.js & AWS Cognito
Is there a way to move the anonymous user back to internal in Artifactory?
Is it possible to create a JWT authentication or something similar in Node.js without using frameworks?
What's the point of refresh token?
What is the purpose of a "Refresh Token"?
Flask HTTP Basicauth - How does it work?
BlazorNotifyAuthenticationStateChanged doesn't update authorized-based elements
httpOnly cookie with React NodeJS not sending cookie to server by applying the network IP address
Tlethon RPCError 406: UPDATE_APP_TO_LOGIN When try to run Python script on Raspberry pi 1 b+
The edge runtime does not support Node.js 'crypto' module error while adding mongoClient in Auth Js (Next js)
Flutter - Can Google Sign in be used without firebase?
Openvpn with username and password
Why does react setState does not work as expected?
SQL Server : login success but "The database [dbName] is not accessible. (ObjectExplorer)"
Where to store the refresh token on the Client?
Django using email authentication with djoser for login
rpId validation failed in Passkeys PoC on Android using Jetpack Compose
How to obtain a boolean out of a SQL WHERE condition?
Flutter MSAL_js-based (B2C) Authentication fails
What is the standard/modern way to use CAC/PIV card authentication in Java/Tomcat web applications?
Enforce MFA for specific API called from SPFx via AADTokenProvider (Even with SPO MFA)
How to Properly Set Up Auth Middleware in Nuxt 3 with Node.js Backend?
How to handle client card/pfx authentication certificate popup in Playwright
Swift Discord OAuth2 redirect URi not supported by Client
Symfony security component - Unable to find key \"username\" in the token payload
How to properly use Bearer tokens?