#4154 ipa-kdb does not take the user's OTP tokens into account
Closed: Fixed None Opened 10 years ago by npmccallum.

Currently, ipa-kdb enforces the use of tokens if "otp" is in ipaUserAuthType. However, this locks users out before they enroll in tokens. Instead, ipa-kdb should query both for ipaUserAuthType and the number of active tokens.


master:

  • fd55da9 ipa-kdb: validate that an OTP user has tokens

Metadata Update from @npmccallum:
- Issue assigned to npmccallum
- Issue set to the milestone: FreeIPA 4.0 - 2014/02

7 years ago

Log in to comment on this ticket.

Metadata