Open markus-geiger opened 4 years ago
Quote from a colleague:
I think there is a problem with the way how our step-up auth is set up with okta. It asks for MFA right after it was entered already, and that's why saml2aws goes to mfa endpoint immediately again and fails with 429.
In other words, what should happen: auth -> saml -> mfa -> saml And this is what happens: auth -> mfa -> saml -> mfa (and fail with 429)
We're not able to use saml2aws since we're always running into "429 Too Many Requests""
Projects like gimme-aws-creds and aws-okta always work fine.
Can the last request be skipped?
saml2aws login --verbose