## Multi-factor authentication (MFA) self-service

Enhance your user’s security by requiring them to verify their identity through multiple authentication methods.

Prerequisites
To use MFA for embedded self-service portal the following versions are required:
@frontegg/react@5.0.18
@frontegg/angular@5.12.0
@frontegg/vue@2.0.16
@frontegg/nextjs@6.7.10

### Setting MFA policy per account

1. In the **self-service portal**, navigate to the **Security** tab.


To access this section end users must have roles with `Security policies` [permissions](/ciam/guides/authorization/rbac/permissions-table) for managing their account various security settings.

1. Under the **Security check up** section, locate **MFA** and click **Manage**.


![mfa-self-service-1](/assets/mfa-self-service-1.5c8585632be77ac857d5df509322780c361682825c23b23e295a60e268a7ed24.249cd156.png)

1. Open the **Configuration** tab.


![mfa-self-service-2](/assets/mfa-self-service-2.338a962dd1c21fa8592eb8f2ce5589b5cc89a2fae8a93f845d5ccf88c35ee7dd.249cd156.png)

1. Choose a policy: **Force**, **Don’t Force**, or **Force except for enterprise SSO** (if available).


![mfa-self-service-3](/assets/mfa-self-service-3.8df14832a741e72abc4aae2679371399fcef2f0f0594db02b4611318608703c7.249cd156.png)

### Setting MFA policy per user

1. Upon first login, users will be prompted to select from available MFA options (excluding built-in authenticators as a first option).


![mfa-self-service-4](/assets/mfa-self-service-4.8bf83b220802957da9cc93c9478c459ef6feb891f8ba31ccab8199130ced03d7.249cd156.png)

1. Users receive recovery codes to save securely.


![mfa-self-service-5](/assets/mfa-self-service-5.a7c0cb9c173a03379734d36e612e7b533cd7ad7ca4909556139be4a3126a104f.249cd156.png)

1. After initial setup, users can configure additional MFA methods in the **self-service portal** under the **Privacy & Security** tab.


![mfa-self-service-6](/assets/mfa-self-service-6.73387df53a311b6d480e685723fa2dc01af3eb18fa5a6052117830c5113f358a.249cd156.png)