Close this search box.

How to Add MFA to Legacy Applications

3 minutes read

In today’s digitized business world, securing legacy applications is crucial for any organization. Whether it’s a homegrown application or a legacy ERP like Oracle JD Edwards, PeopleSoft, Siebel, or EBS, integrating Multi-factor Authentication (MFA) can significantly enhance your security. However, implementing MFA with these systems can be challenging due to their inherent limitations. In this blog, we’ll guide you on how to use Datawiza Access Proxy to seamlessly add MFA to your legacy applications.

The Challenge of Adding MFA to Legacy Apps

Legacy applications, especially homegrown applications or long-established ERPs like Oracle JD Edwards, PeopleSoft, Siebel, or EBS, weren’t constructed with the foresight of modern single sign-on protocols such as SAML or OpenID Connect (OIDC). Consequently, establishing direct connections between these applications and today’s popular identity platforms such as Microsoft Entra ID (Azure AD), Okta, Cisco Duo, Ping, PingOne, Google and others that offer MFA, becomes an uphill task.

Additionally, retrofitting these legacy systems to accommodate the modern protocols is a resource-intensive task. It’s not just about the financial implications; it’s also a significant time investment. Given the rapid evolution of MFA technologies, keeping your applications updated with these developments means committing to an endless cycle of costly and time-consuming revisions. This is an approach that is often beyond the capacity and practicality of many organizations.

The Datawiza Solution: No-code MFA Implementation

Datawiza offers a no-code, super easy-to-use solution for these challenges. How? By acting as an MFA proxy situated in front of your applications. These could be an on-premise application or a cloud-based one, an internal app or a customer-facing app; regardless of whether it’s a homegrown application or one developed by a third party.

Datawiza Access Proxy (DAP) communicates with your preferred MFA services from identity platforms like Microsoft Entra ID, Okta, Duo, PingOne, and others. It intercepts all incoming traffic, authenticates users using the specified MFA method, and then routes the verified requests to your applications. See the diagram below for your reference.

enable mfa for legacy apps

The significant advantage here is that it requires no changes to your application’s code. This makes it an ideal solution for enhancing the security of legacy applications without necessitating a massive investment in development. The whole process can be implemented in a matter of minutes, providing immediate security enhancement.


In today’s digital world, enhancing the security of legacy applications is not an option but a necessity. MFA offers an effective solution for this, but its implementation can be challenging, especially when dealing with legacy systems.

Datawiza Access Proxy provides an efficient and cost-effective way of integrating MFA with legacy applications. It offers a no-code solution, saving hundreds of hours and significant financial resources otherwise spent on continuous development.

Are you ready to secure your legacy applications with MFA? Contact us today to learn more!