What is a multi-factor authentication API?

A multi-factor authentication (MFA) API lets you add a second layer of identity verification to applications by sending one-time passcodes (OTPs) to users via SMS or voice call. SignalWire's MFA API handles OTP generation, delivery, and verification with configurable token length, expiration windows, and max attempt limits, requiring no changes to existing app logic or database structure.

What is a one-time password (OTP), and how does SignalWire deliver it?

A one-time password (OTP) is a temporary code, typically 6 digits, used to verify a user's identity during login or sensitive actions. SignalWire's MFA API delivers OTPs via SMS or voice call, with the delivery method selectable per request. This allows developers to give end users a choice and fall back to voice for users without SMS access.

Does SignalWire support both SMS and voice authentication?

Yes. You can deliver verification codes via SMS or automated voice calls depending on your use case.

Can MFA be triggered automatically from my application?

Yes. You can trigger authentication workflows programmatically based on login attempts, transactions, or security events.

Can MFA scale for large user bases?

Yes. SignalWire supports high-volume authentication workflows for applications with large numbers of users.

Contact Sales

All fields are required

Multi-Factor Authentication | SignalWire

Multi-Factor Authentication

Enabling MFA provides a higher level of security where users have to provide their password as well as a One-Time Password sent via SMS to their mobile phones, to access their account. With SignalWire Multi-Factor Authentication API, it is easy to add that layer of security to both new and existing applications, regardless of language or platform.

Additional Security

Eliminate the cumbersome tasks of providing the scaffolding for user management and identity verification when adding two-factor authentication to your applications.

Enable MFA for users with ease and without making any changes to the application logic or database structure.
Sending One-Time Passwords (OTPs) helps reduce fake accounts and spam by ensuring that only users with verified phone numbers can log in.

Voice or Messaging

The SignalWire Multi-Factor Authentication API allows you to choose between voice or SMS for each authentication request.
Give your customers a choice to receive the one-time password (OTP) via voice or text message.

Worldwide Coverage

The SignalWire Elastic Cloud Network is available in all countries to ensure continuous and uninterrupted access from around the world.
Your application will be accessible to users in every country, causing no disruptions and providing a seamless experience.

Seamless Migration

SignalWire Communication APIs are backward compatible with other industry APIs for voice and messaging.
Migrating existing applications will not cause any interference and will continue to work without any changes.
On the SignalWire platform, your application will automatically benefit from improved voice clarity and reduced latency, enhancing the experience for your users.

Explore Use Cases

User Login Verification

Confirm identity with a One-Time Passcode (OTP) via SMS or Voice

Account Recovery

Confirm identity before allowing a password reset.

High-Risk Action Confirmation

Require MFA challenge before processing sensitive actions like money transfers.

New Device or Location Detection

Trigger an MFA prompt when login is attempted from a new device.

Resources

Frequently Asked Questions

A multi-factor authentication (MFA) API lets you add a second layer of identity verification to applications by sending one-time passcodes (OTPs) to users via SMS or voice call. SignalWire's MFA API handles OTP generation, delivery, and verification with configurable token length, expiration windows, and max attempt limits, requiring no changes to existing app logic or database structure.
A one-time password (OTP) is a temporary code, typically 6 digits, used to verify a user's identity during login or sensitive actions. SignalWire's MFA API delivers OTPs via SMS or voice call, with the delivery method selectable per request. This allows developers to give end users a choice and fall back to voice for users without SMS access.
Yes. You can deliver verification codes via SMS or automated voice calls depending on your use case.
Yes. You can trigger authentication workflows programmatically based on login attempts, transactions, or security events.
Yes. SignalWire supports high-volume authentication workflows for applications with large numbers of users.

No platform fees or hidden charges. Pay for what you use.

View Pricing

Let’s Talk About Securing Your Customers.

Our team is here to help you integrate MFA into your workflows.