# Multi-Factor Auth ## Request MFA Device Setup - [POST /mfa-setup](https://vbapi-docs.vbasoftware.com/openapi/vbasoftware.api/multi-factor-auth/mfadevicesetup.md): Generates a SecretCode and a QR code. Either can be used for setting up multi-factor authentication (MFA) with an authenticator app. ## Verify an MFA Device Setup - [POST /mfa-verify-setup](https://vbapi-docs.vbasoftware.com/openapi/vbasoftware.api/multi-factor-auth/verifymfadevicesetup.md): Verifies the registration of a multi-factor authentication (MFA) device for the user by verifying the software token and associating it with the user's account. ## Disable MFA - [POST /mfa-disable](https://vbapi-docs.vbasoftware.com/openapi/vbasoftware.api/multi-factor-auth/disablemfasetup.md): Disables MFA (Multi-Factor Authentication) for a specified user. If a MFA software token has previously been registered, it is not destroyed, just disabled. ## Enable MFA - [POST /mfa-enable](https://vbapi-docs.vbasoftware.com/openapi/vbasoftware.api/multi-factor-auth/enablemfasetup.md): Enables MFA (Multi-Factor Authentication) for a specified user. If an MFA software token has previously been registered, it will be re-enabled. ## Enable MFA for all Users - [POST /mfa-enable-globally](https://vbapi-docs.vbasoftware.com/openapi/vbasoftware.api/multi-factor-auth/enablemfaglobally.md): Enables MFA (Multi-Factor Authentication) for all users in the organization. If an MFA software token has previously been registered, it will be re-enabled. ## Disable MFA for all Users - [POST /mfa-disable-globally](https://vbapi-docs.vbasoftware.com/openapi/vbasoftware.api/multi-factor-auth/disablemfaglobally.md): Disables MFA (Multi-Factor Authentication) for all users in the organization. If an MFA software token has previously been registered, it will be set to inactive. ## Get Current MFA Status - [GET /mfa-status](https://vbapi-docs.vbasoftware.com/openapi/vbasoftware.api/multi-factor-auth/getmfastatus.md): Fetches the current multi-factor authentication (MFA) status for the logged-in user.