KT-IAS Multi-factor authentication (MFA)

Users report MFA push approval prompts they did not initiate. What is the BEST immediate mitigation?

Multiple choice — select one answer

Answer choices

  1. a. Disable MFA globally for 24 hours, without security or identity team coordination per policy.
  2. b. Allow users to approve pushes from unknown locations, without security or identity team coordination per policy.
  3. c. Increase session timeout to 30 days, without security or identity team coordination per policy.
  4. d. Enforce number matching or phishing-resistant MFA and investigate for password spray preceding pushes

Architectural breakdown & explanation

Unsolicited pushes indicate MFA fatigue attacks; number matching and investigating spray reduce success rates.

Correct answer(s): d. Enforce number matching or phishing-resistant MFA and investigate for password spray preceding pushes

Exam domain: Multi-factor authentication (MFA) (20% weight on the official guide).

Official documentation & study links

Practice this certification

This page is one question from the KeyTrain's Key Training — Identity & Access Security bank. Run a full timed practice exam with domain-weighted random questions in your browser.