There's a bug in the enable OTP flow that prevents the user from enabling OTP right after logging-in. The way to go around this bug is to refresh the page once on the OTP page.
When a user logs-in the lastLoginUri does not get set correctly which breaks the Enable OTP action. However this gets set correctly on a clean browser session.
There's a bug in the enable OTP flow that prevents the user from enabling OTP right after logging-in. The way to go around this bug is to refresh the page once on the OTP page.
When a user logs-in the lastLoginUri does not get set correctly which breaks the Enable OTP action. However this gets set correctly on a clean browser session.