PSPAS with SAML MFA and CyberARK MFA

[flgator346]

I am having an issue with logging into Cyberark via psPAS. We first have to sign into the CyberArk Identity User Portal via our MS Azure login and preform a MFA response. Then the page goes to perform a cyberark MFA response that is pushed to my cell. Then once that is authenticated, I can get to the Privilege Cloud to retrieve my passwords. It looks to be Azure>CyberArk User Portal> Vault via shared services. Is there any way I can login with this? I use to when it was just a saml response to cyberark, but since we implemented cyberark MFA in the mix, it has been a no go. Please let me know and I can try to provide more info.

Thanks, Michael

[pspete]

New-IDSession accepts a saml response - though can't currently guarantee it will work for 100% of saml authentication scenarios (simply cannot test them all).

There is still work to do to enable SAML auth to shared services (using IdentityCommand) for psPAS.

[flgator346]

Thank you for the response. I will try this on Monday and see where I get. I will let you know the results! Thanks for the quick response!