Enforce Multi-factor Authentication (MFA) for Guest Pages

When this option is enabled on an event, guests must complete an MFA verification step before they can continue on protected guest pages.

Event admins with permission to edit event settings can enable this from the event configuration area.

Open the event in admin.
Go to the Edit Event page.
Locate the option: Enforce Multi-factor Authentication (MFA) for guest pages.
Turn the setting On.
Save the event.

Once saved, MFA enforcement applies to the event’s guest-facing pages that require this protection.

When a guest visits an enforced guest page:

The guest enters the page using their normal guest access flow.
If their current session is not already validated for that specific guest, the system prompts the guest to complete MFA verification via SMS or Email.
The guest receives/uses their second-factor code or method.
After successful verification, access is granted and the guest can continue.
If verification is not completed successfully, the guest cannot proceed to the protected guest content.

Important behavior

MFA enforcement is controlled per event through the Edit Event setting.

Turning the setting on affects the guest experience immediately after save.

Guests will be challenged for MFA on applicable guest pages tied to that event.

The Enforce Multi-factor Authentication (MFA) for guest pages setting adds an extra security step to guest access.