Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Enable MFA for (all) or newly connected services #444

Open
phavekes opened this issue Oct 15, 2024 · 1 comment
Open

Enable MFA for (all) or newly connected services #444

phavekes opened this issue Oct 15, 2024 · 1 comment
Labels
Imported

Comments

@phavekes
Copy link
Member

This issue is imported from pivotal - Originaly created at Nov 28, 2023 by andreklaver

An increasing amount of IdP's require MFA to be enabled by default. Create a setting to make sure that all (or new services) have MFA enabled. Disable MFA for specific services on request by the SCV only.

IdP's that have MFA enabled by default will have an SP Whitelist and Stepup list that is similar and thus long. You might want to invert the stepup list for IdPs that do so: list only services that do not have MFA enabled: !STEPUP.
@phavekes phavekes self-assigned this Oct 15, 2024
@phavekes
Copy link
Member Author

Probably better to work on the plan to require IdPs to use MFA for all SURFconext logins. (Thijs Kinkhorst - Mar 13, 2024)

@phavekes phavekes removed their assignment Oct 15, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Imported
Projects
Openconext-Manage
Status: New
Milestone
No milestone
Development

No branches or pull requests
1 participant
@phavekes