Authentication method reference (AMR)

The AMR value is used in authentication protocols. It refers to a value that indicates the methods or mechanisms used to authenticate a user during an authentication process.

AMR values provide a standardized way to convey information about the strength or type of authentication that was performed. Typically, each "amr" value provides an identifier for a family of closely related authentication methods.

For example, the "otp" identifier intentionally covers OTPs (One-Time Passwords) based on both time and HMAC (Hashed Message Authentication Code). Many relying parties will be content to know that an OTP has been used in addition to a password; the distinction between which kind of OTP was used is not useful to them. Thus, there is a single identifier that can be satisfied in two or more nearly equivalent ways.

The table below will help you identify the AMR value alongside each authentication method.

Authentication Method	AMR Value
RENEWED	101
SOCIAL_LOGIN	102
EMAIL	103
SMS	104
GUEST_LOGIN	105
FIDO2	106
FIDOU2F	107
TOUCHID	108
IVR	109
PUSH_EMAIL	80
PUSH_MOBILE	81
PUSH_USERNAME	82
PUSH_CUSTOM_USERNAME	83
PATTERN_EMAIL	70
PATTERN_MOBILE	71
PATTERN_USERNAME	72
PATTERN_CUSTOM_USERNAME	73
TOTP_EMAIL	60
TOTP_MOBILE	61
TOTP_USERNAME	62
TOTP_CUSTOM_USERNAME	63
BACKUPCODE_EMAIL	50
BACKUPCODE_MOBILE	51
BACKUPCODE_USERNAME	52
BACKUPCODE_CUSTOM_USERNAME	53
FACE_EMAIL	40
FACE_MOBILE	41
FACE_USERNAME	42
FACE_CUSTOM_USERNAME	43
VOICE_EMAIL	90
VOICE_MOBILE	91
VOICE_USERNAME	92
VOICE_CUSTOM_USERNAME	93
SECURITY_QUESTION_EMAIL	30
SECURITY_QUESTION_MOBILE	31
SECURITY_QUESTION_USERNAME	32
SECURITY_QUESTION_CUSTOM_USERNAME	33
PASSWORD_EMAIL	10
PASSWORD_MOBILE	11
PASSWORD_USERNAME	12
PASSWORD_CUSTOM_USERNAME	13

warning

Need Support?

Please contact us directly on our support page or reach out to cidaas support at [email protected].