Account-Based MFA

Dashboard Setup

Go to the Security page.
In the Account MFA section, enable your desired methods (TOTP and/or Passkeys).
(Optional) Toggle “Require at onboarding” to force MFA setup during signup.
(Optional) Toggle “Session-based MFA” to require MFA for every new session.

Your UI SDK Implementation

TOTP
Passkey

Register device: registerTotpMfaDevice() returns a QR uri and secret.
Authenticate: authenticateTotpMfaDevice({ code }) completes the challenge.
Manage devices: getMfaDevices() lists devices; deleteMfaDevice() deletes.
Recovery codes: getMfaRecoveryCodes() to display; createNewMfaRecoveryCodes() to rotate; authenticateMfaRecoveryCode({ code }) to unblock login.

import { registerTotpMfaDevice, authenticateTotpMfaDevice, getMfaDevices } from '@dynamic-labs-sdk/client';

const register = async () => {
  const { uri } = await registerTotpMfaDevice();
  // Render QR code from `uri`
};

const verify = async (code) => {
  await authenticateTotpMfaDevice({ code });
};

const listDevices = async () => {
  const devices = await getMfaDevices();
  console.log(devices);
};

import {
  getMfaRecoveryCodes,
  createNewMfaRecoveryCodes,
  authenticateMfaRecoveryCode,
} from '@dynamic-labs-sdk/client';

const showCodes = async () => {
  const { recoveryCodes } = await getMfaRecoveryCodes();
  console.log(recoveryCodes);
};

const rotateCodes = async () => {
  const { recoveryCodes } = await createNewMfaRecoveryCodes();
  console.log(recoveryCodes);
};

const authWithRecovery = async (code) => {
  await authenticateMfaRecoveryCode({ code });
};

import { authenticateTotpMfaDevice, deleteMfaDevice } from '@dynamic-labs-sdk/client';

const deleteTotpDevice = async (deviceId, code) => {
  // Create a single-use MFA token using the device to be deleted
  await authenticateTotpMfaDevice({
    code,
    createMfaTokenOptions: { singleUse: true },
  });

  // Use the MFA token from the client to authorize deletion
  const mfaToken = dynamicClient.mfaToken;
  await deleteMfaDevice({ deviceId, mfaAuthToken: mfaToken });
};

Register: registerPasskey() creates and registers a passkey.
Authenticate: authenticatePasskeyMFA() completes the MFA challenge.
Manage: getPasskeys() lists; deletePasskey() removes.
Recovery codes: getMfaRecoveryCodes() to display; createNewMfaRecoveryCodes() to rotate; authenticateMfaRecoveryCode({ code }) to unblock login.

import { registerPasskey, authenticatePasskeyMFA, getPasskeys } from '@dynamic-labs-sdk/client';

const register = async () => {
  await registerPasskey();
};

const mfa = async () => {
  await authenticatePasskeyMFA();
};

const list = async () => {
  const keys = await getPasskeys();
  console.log(keys);
};

import {
  getMfaRecoveryCodes,
  createNewMfaRecoveryCodes,
  authenticateMfaRecoveryCode,
} from '@dynamic-labs-sdk/client';

const showCodes = async () => {
  const { recoveryCodes } = await getMfaRecoveryCodes();
  console.log(recoveryCodes);
};

const rotateCodes = async () => {
  const { recoveryCodes } = await createNewMfaRecoveryCodes();
  console.log(recoveryCodes);
};

const authWithRecovery = async (code) => {
  await authenticateMfaRecoveryCode({ code });
};

import { deletePasskey } from '@dynamic-labs-sdk/client';

const removePasskey = async (passkeyId) => {
  await deletePasskey({ passkeyId });
};

Installation & Configuration

Authenticate

Bring Your Own Authentication

Wallets

Funding & Onramp

Events

Account-Based MFA

Dashboard Setup

Your UI SDK Implementation

Installation & Configuration

Authenticate

Bring Your Own Authentication

Wallets

Funding & Onramp

Events

​Dashboard Setup

​Your UI SDK Implementation

Dashboard Setup

Your UI SDK Implementation