The SocialAndLocalAccountsWithMfa starter pack by default includes the Sessions Manager technical profile which facilitates SSO if you have already signed into the same browser session. However, if your authentication request includes prompt=login
parameter you will be forced to perform login again regardless of whether you have an active session and session cookie or not.
If you are using the Run Now endpoint, prompt=login
parameter is specified by default at the end of the URL. If you have an active session and you try to sign-in using custom policy in a new tab within same browser session without prompt=login
, you will be directly signed-in without having to enter the credentials and perform MFA again.
-----------------------------------------------------------------------------------------------------------
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.