Issue #2988: [RFE] Make OTP/2FA authentication optional - sssd - Pagure.io

SSSD / sssd

#2988 [RFE] Make OTP/2FA authentication optional

Closed: Fixed None Opened 8 years ago by jhrozek.

Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 7): Bug 1325809

Description of problem:

It OTP authentication is enabled in the IPA server for a user only OTP
authentication is possible although the user has a long-term password which can
be used for single-factor authentication as well. It would be good if SSSD can
do 1FA as well if only one factor was given at the login prompt.

Additionally the documentation might be enhanced to illustrate how the
credentials can be promoted from 1FA to 2FA by calling 'su' or switching to the
screen saver. This will be important as soon as applications become aware of
Authentication Indicators see e.g. #1224057.

jhrozek commented 8 years ago

Fields changed

blockedby: =>
blocking: =>
changelog: =>
coverity: =>
design: =>
design_review: => 0
feature_milestone: =>
fedora_test_page: =>
mark: no => 0
milestone: NEEDS_TRIAGE => SSSD 1.14 beta
review: True => 0
selected: =>
testsupdated: => 0

sbose commented 7 years ago

Fields changed

owner: somebody => sbose
status: new => assigned

sbose commented 7 years ago

Fields changed

design: => https://fedorahosted.org/sssd/wiki/DesignDocs/PromptingForMultipleAuthenticationTypes

sbose commented 7 years ago

Fields changed

patch: 0 => 1

jhrozek commented 7 years ago

Fields changed

milestone: SSSD 1.14 beta => SSSD 1.14 alpha

jhrozek commented 7 years ago

The patch is on the list, but I need to release the Alpha tarball today, moving to Beta.

milestone: SSSD 1.14 alpha => SSSD 1.14 beta

jhrozek commented 7 years ago

The patch is on the list, but I need to release the Beta tarball today, moving to 1.14.0.

milestone: SSSD 1.14 beta => SSSD 1.14.0

jhrozek commented 7 years ago

Downstream BZ->increase in priority

priority: major => critical

jhrozek commented 7 years ago

master: 78027fe

resolution: => fixed
status: assigned => closed

Metadata Update from @jhrozek:
- Issue assigned to sbose
- Issue set to the milestone: SSSD 1.14.0

7 years ago

pbrezina commented 3 years ago

SSSD is moving from Pagure to Github. This means that new issues and pull requests
will be accepted only in SSSD's github repository.

This issue has been cloned to Github and is available here:
- https://github.com/SSSD/sssd/issues/4029

If you want to receive further updates on the issue, please navigate to the github issue
and click on subscribe button.

Thank you for understanding. We apologize for all inconvenience.

Login to comment on this ticket.

Metadata

Assignee

Tags

None

Blocking

None

Depending on

None

Priority

critical

Milestone

SSSD 1.14.0

type

enhancement

component

SSSD

version

None

selected

None

testsupdated

0

patch

1

rhbz

https://bugzilla.redhat.com/show_bug.cgi?id=1325809

design_review

0

review

0

changelog

None

keywords

None

coverity

None

mark

0

blocking

None

design

https://fedorahosted.org/sssd/wiki/DesignDocs/PromptingForMultipleAuthenticationTypes

sensitive

0

cc

None

blockedby

None

feature_milestone

None

Powered by Pagure 5.13.3

Documentation • File an Issue • About • SSH Hostkey/Fingerprint

© Red Hat, Inc. and others.