3744497 - “Invalid MFA Code” Error During Multi‑Factor Verification for OIDC OAuth Client Applications / Payment Information

An “Invalid MFA code” error is displayed during multi‑factor authentication when registering a new OIDC OAuth Client Application or updating the payment information, even though the correct verification code is entered.

1. Complete the required configuration as described in the guide: New Option to Enable Transactional Verification for Critical Transactions.
2. Log in to the SuccessFactors instance.
3. Navigate to Security Center > Manage OIDC OAuth Client Application.
4. Register a new application.
5. Enter the 6‑digit verification code.
   • The application is created successfully.
6. Delete the newly created application.
7. Repeat the process to create a new application
8. .When entering the same 6‑digit verification code, the system now displays the error message:
   • “Invalid MFA code.”, even though the code is correct.

A permanent fix is planned to be delivered by the end of Q2 2026. Once additional details about the fix are available, this article will be updated accordingly.

A workaround is currently available. If you would like it applied to your environment, please submit a support ticket for the LOD‑SF‑PLT‑IAS component and reference this article in your request.