andrewpmartinez
commented
1 year ago What is your ideal method of configuring? How many would you want to be configured? Do you want it configured at run time or only at startup?
Closed dovholuknf closed 1 year ago
andrewpmartinez
commented
1 year ago What is your ideal method of configuring? How many would you want to be configured? Do you want it configured at run time or only at startup?
dovholuknf
commented
1 year ago It seems to be that just being able to configure it one time is all that's really needed since every token would come from the same overlay network. Dynamically configuring it would be great, through an API. But even just being able to configure it during ziti init or via a config update is better than nothing. I do think in the long run it should be configurable via API.
I dunno if there's any HA implications. Would you want to be able to know which controller authored the token? Seems unnecessary to me but maybe?
NetFoundry-Zendesk
commented
1 year ago
Right now, when enabling an identity with MFA TOTP, "ziti.dev" is used for the token and relayed to the authenticator apps. It'd be nice to be able to configure that value.