Admin can exempt the users or workstations from multifactor authentication by adding them to the allowlist. You can add or remove the allowlist entries such as eDirectory or Active Directory users, eDirectory or Active Directory groups, IP address of CIFS client workstation, IP address range of CIFS client workstations, or subnet of CIFS client workstations. Use mfa-server-cli utility to manage the allowlist in OES MFA server.