Within Multi-factor Auth settings in the dashboard:

• If Always is selected, the following response is received with an mfa_token in the response:

```
{
"error": "mfa_required",
"error_description": "Multifactor authentication required",
"mfa_token": "Fe26.2*SERVER…"
}
```

Customize Multifactor Authentication (MFA) by adding an Action to Login Flow via methods in the document Customize MFA Selection for Universal Login.

• The following response has been received. There is no mfa_token in the response.

{
"error": "mfa_required",
"error_description": "Multifactor authentication required",
}

• Multifactor Authentication (MFA)

This is a known limitation, and a solution is in the backlog.