No option to enforce MFA in Access

The dev doc here mentions enforcing MFA in Access Applications by creating rules. Enforce MFA · Cloudflare Zero Trust docs

However, in my Cloudflare Access interface I cannot see rules for an application (they are called policies), and when creating a policy, I cannot find “Authentication Method” in the “Require” dropdown.

I have Azure AD configured as an authentication method, and I can see “Azure Groups” in the “Require” dropdown.

Try this:

And note this bit:

The rule must contain an Include rule which defines an identity. For example, the Include rule should allow for users who are part of a user group, email domain, or identity provider group.

1 Like

Thanks. I realized what I missed. The rules for checking MFA must be an required rule. Hope this is useful for anyone having a similar issue.

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.