By default, users can mark their browser or device as “trusted” in order to safely bypass the 2FA process for future logins.
With 2FA enabled, the second factor of authentication is required the first time a user logs in. If the user completes this verification process and selects “Trust this device for future logins”, they will not have to complete the 2FA process again for 30 days on that browser or device.
You can customize this lifetime or disable the “trust this device” feature by configuring the
authentication.second_factor.trust_device_ttl setting in the Identity Cloud Console.
ttl stands for “time to live”.
The steps below configure a custom trusted device lifetime for a specific property:
2592000(or delete this setting)
It may take a few minutes for your changes to be reflected in Hosted Login after you add or update a setting in Console.