Open Paktosan opened 3 years ago
TFA as in "three factor authentication" (idm+ldap+hardware token) or as in "too fucking annoying"? :P
TFA as in "three factor authentication" (idm+ldap+hardware token) or as in "too fucking annoying"? :P
Well. We could substitute Yubikeys OTPs or webauthn for passwords. Additionally the suggestion was to enable not to enforce TFA/MFA
It would be a nice security feature to allow using TFA during Pycroft login. Web browsers support hardware tokens like the Yubikey or Apples Macbook Fingerprint Readers through https://webauthn.guide/