Multi-factor Authentication (MFA)

Secure and frictionless access for all your trusted users

Stop Breaches, Not Users


For years, the leading cause of data breaches has been unauthorized access — in other words, login credentials that have fallen into the wrong hands. While usernames and passwords have remained the go-to authentication method, they are no longer enough.

With MFA, even if a customer’s or employee’s credentials are stolen or compromised, they can’t be used to access an account, application, or system illegitimately.

What is Multi-factor Authentication?

What is ForgeRock Intelligent Access?

"Over the past five years, the amount of [personally identifiable information] PII in breached records has increased — 72% of U.S. breaches contained date of birth and Social Security Number (SSN), a 20% increase over 2021."

2023 ForgeRock Identity Breach Report


Prevent Fraud. Eliminate Customer Frustration.


Unauthorized access is responsible for fully half of today’s data breaches. MFA is a critical step in preventing it by applying extra layers of security before granting access.


But it’s important to avoid unnecessary friction for your legitimate users. With ForgeRock, you can apply “step-up” authentication when risk factors are detected, while enabling passwordless authentication for low-risk requests.

Create Personalized and Secure Access Journeys

Build dynamic and secure journeys with the simple drag-and-drop interface in ForgeRock Intelligent Access.


Leverage AI-Driven Threat Protection

Prevent account takeover and fraud while improving experiences for legitimate users with ForgeRock Autonomous Access.


Bring Passwordless Authentication to MFA

Learn how to make passwordless authentication part of your MFA strategy for simpler logins and stronger security with ForgeRock Passwordless Authentication.

ForgeRock Experience Center:  Multi-factor Authentication




Experience the ForgeRock Difference.


MFA doesn't have to be complex. We’ve built a better way that gives your users choice, security, and convenience at login. See how MFA choice can help increase user adoption and strengthen your security posture.


Take the Interactive Tour

Prevent Unauthorized Access. Enhance Workforce Productivity.

In the workplace, it’s essential to ensure secure access to business resources without putting too many obstacles between workers and the tools they need to do their jobs.

With MFA, your workforce can simply use their smartphone and a fingerprint. It's fast and convenient for users and prevents unauthorized access.

And with a modern MFA solution, anomalous employee behavior, such as a change in device or location, can trigger additional authentication steps.

Apply Contextual Access to Expand Zero Trust

Build context-based intelligence into policies to assess risk at the time of access as well as at any point during a digital session with ForgeRock Workforce IAM.

Enterprise Connect

Secure access to critical workforce infrastructure across your organization.

Learn more about ForgeRock Enterprise Connect

Push Notifications: Simple, Strong Protection

Learn about the latest ForgeRock Authenticator App

Keep Users Safe, Happy, and Productive

Go Passwordless

Let users sign in with a tap, a touch, or a smile.

Enable Single Sign-On

Streamline employee access to all cloud, legacy, and third-party apps.

Leverage Zero Trust

Authenticate and authorize continuously and apply least-privileged access.

Do MFA Your Way

No two organizations are exactly alike. With ForgeRock, you have the flexibility to create user access journeys that reinforce your security and access policies. ForgeRock supports industry-standard protocols, including Open Authentication (OATH) for one-time passwords, and Web Authentication (WebAuthn) to enable the use of an authenticator device, such as a fingerprint scanner.

ForgeRock Authentication Methods
  • Push notification
  • One-time password (OTP) via app, email, or SMS
  • FIDO2 security keys
  • Biometrics (facial, fingerprint, and more)
  • OATH: For use with OATH-based hardware devices (Yubikey, RSA)
  • Risk-based authentication (location, device and environmental factors)
  • X.509 certificates
Enterprise Connect Integrations
  • Windows and Mac workstations and servers
  • Windows Remote Desktop Protocol (RDP)
  • Radius-based authentication
  • Remote desktop (Virtual and Windows)
  • Desktop single sign-on

In addition to built-in authentication nodes, the ForgeRock Trust Network makes it easy to use authentication methods from other vendors. ForgeRock also offers mobile SDKs to build authentication into the mobile experience and to customize to meet brand standards and create seamless customer experiences.

A Day in the Life of a Financial Services Customer

Solution Brief

AI-Driven Identity for the Modern Enterprise

An AI-Driven identity analytics solution that allows organizations to achieve regulatory compliance, mitigate risks, and reduce costs.


ForgeRock Intelligent Access User Journeys

Use data-driven insights and analytics to understand and fine-tune your customers' journeys.

Data Sheet

ForgeRock Enterprise Connect

Secure access to critical workforce infrastructure.


MFA Prompt Bombing: Why a Cookie-Cutter MFA Solution Doesn’t Cut it Anymore

Have you ever been in a situation where an interesting but obscure subject is mentioned in conversations by different people in a short amount of time?


Three Ways CDR Will Alter the Australian Open Banking Landscape

CDR is here! But don’t panic if your bank isn’t quite there yet. We can help with our new ForgeRock CDR Open Banking Accelerators.
Well, it’s finally here. The ...


ForgeRock Consumer Survey: The New Normal

The New Normal – Living Life Online | Suddenly, everybody was home. You became a homeschool teacher and you learned how to host a corporate happy hour over Zoom ...


Best Practices for Earning Insurance Customer Loyalty

Demand for exceptional, personalised customer experience is a top motivator for digital transformation for nearly every industry – and insurance is no exception ...