Current it is not possible to enforce 2FA/MFA for individual users. It would be great to be able to enforce this. I.e. if a user does not have 2FA/MFA configured, the "configure OTP" action is set.
resource "keycloak_user" "jane_doe" {
realm_id = data.keycloak_realm.realm.id
username = "jane.doe"
enabled = true
email = "jane.doe@example.com"
first_name = Jane
last_name = Doe
initial_password {
value = "..."
temporary = true
}
# NEW
mfa_required = true
}
Current it is not possible to enforce 2FA/MFA for individual users. It would be great to be able to enforce this. I.e. if a user does not have 2FA/MFA configured, the "configure OTP" action is set.