Closed rattat0r closed 11 months ago
It could be disable by configuration. The env var is not explicitly define in https://docs.opencti.io/latest/deployment/authentication/ but the file config is available. So for your use with a strategy named LOCAL, it should be something like:
PROVIDERS__LOCAL__CONFIG__DISABLED=true
@richard-julien Thanks for the answer!
Description
The user can connect via LDAP and via Local Auth Strategy, even if I comment out the line
- PROVIDERS__LOCAL__STRATEGY=LocalStrategy.
I have local connector and user accounts. I need to migrate local user accounts to LDAP Auth Strategy. New users successfully log into the platform only via LDAP; they will not be able to connect using the Local Auth Strategy (this is correct). But users who had a local account can connect using both LDAP and Local Auth Strategy at the same time. I need to remove the ability to connect via Local Auth Strategy for users who can now connect via LDAP, but I need to keep the local connector accounts. How can I disable local accounts for these users?
Environment
Reproducible Steps
Steps to create the smallest reproducible scenario:
Expected Output
After enabling LDAP Auth Strategy and disabling Local Auth Strategy, it is only possible to log in using the enabled strategy.
Actual Output
After enabling LDAP Auth Strategy and disabling Local Auth Strategy, it is possible to log in using both strategies.
Additional information
My config:
Screenshots (optional)
I have disabled Local Auth Strategy, but it is enabled in the platform settings