Enable two-factor authentication for all administrators accessing SAP Cloud Identity Services administration console.
We recommend that you protect the access to the administration console with two-factor authentication (TFA). Requesting additional means of identity verification provides enhanced security.
The initial administrator configures the access to this application under Applications & Resources > Applications > System Applications > Administration Console > Authentication and Access, where the TFA method must be defined as a default authentication rule under Risk-Based Authentication.
For more information, see Configure Risk-Based Authentication for an Application.