Two Factor Authentication

[Paktosan]

It would be a nice security feature to allow using TFA during Pycroft login. Web browsers support hardware tokens like the Yubikey or Apples Macbook Fingerprint Readers through https://webauthn.guide/

[Lodifice]

TFA as in "three factor authentication" (idm+ldap+hardware token) or as in "too fucking annoying"? :P

[MarauderXtreme]

TFA as in "three factor authentication" (idm+ldap+hardware token) or as in "too fucking annoying"? :P

Well. We could substitute Yubikeys OTPs or webauthn for passwords. Additionally the suggestion was to enable not to enforce TFA/MFA