To use the new sign-on policy, the POST /environments/{environmentId}/applications/{applicationId}/signOnPolicyAssignments operation assigns the new MFA sign-on policy to the application designated by its ID in the request URL. The request body specifies the sign-on policy property id and an integer value for the priority property.