Follow the instructions below to enable multifactor authentication.
1. To use multifactor authentication, first it is needed to configure Identify Server to enable multifactor authentication. To do that, open the <IS_HOME>/repository/conf/identity.xml file, search for the element 'UseMultifactorAuthentication' and change its value to 'true'.
2. Sign in. Enter your user name and password to log on to the Management Console.
3. Click the "Main" button to access the "My Identity" menu.
4. From the "Main" menu, select "Multifactor Authentication" under the "My Identity."
5. Select the preferred "XMPP Provider" from the combo box.
6. Specify the username corresponding to the "XMPP Provider" mentioned above.
Tip
The username along with the provider's extension should be specified here. For example, "wso2ISuser@xmpp-provider.com."
7. Enter a "PIN Number" which contains more than six characters and re-enter the same PIN number.
8. The checkbox "Use the PIN number for authentication" is used to specify whether the PIN number should be used in the authentication process. If this is checked, then the PIN number should be provided in the authentication process, else "yes/no" type of response is expected in the multifactor authentication process.
9. Click the "Add" button.
10. Then a notification will be popped up saying the status of the operation. After the successful completion of this process, you will be ended up with a notification similar to the following. Click "OK."
11. XMPP based Multifactor authentication is now enabled, and the new checkbox "Enable XMPP based multifactor authentication." is visible.
Note
XMPP based multifactor authentication will be activated only if this checkbox is checked.
Tip
Once these settings are added, it is possible to modify the settings whenever required. Do the necessary changes and click the "Save" button.
i.e. To disable XMPP based multifactor authentication, uncheck the "Enable XMPP based multifactor authentication." checkbox and click the "Save" button.