MFAChallenge – Developer Support

About MFA Challenge

Multi Factor Authentication (MFA) is required to call the protected APIs that pay bills, send network invitations, send vendor invitations, and manage vendor bank accounts. This API request generates and returns a challenge ID, and sends a token to your mobile device that is registered with Bill.com.

If you have not registered a mobile device, the BDC_1354 error is returned.

Note: The challenge ID and token are required for the MFAAuthenticate API request.

Example

Request

<API_URL_EndPoint>/MFAChallenge.json

data={
   "useBackup" : false
}

Response

data={
  "response_status" : 0,
  "response_message" : "Success",
  "response_data" : {
    "challengeId" : "!a20Ob49EtAYKMvZ1SQjggzdVQ0xXhMa6SgBSIGdtRTpw"
  }
}

Resources

MFA Workflow
MFAAuthenticate

Parameters

Request parameters

Field Name	Description	Required?
useBackup	Determines whether the token needs to be sent to the primary mobile device [value = false] or back up mobile device [value = true]	Yes