Closed akkornel closed 6 years ago
In MinSec for Applications, the Two-Step Authentication item has the following:
Require Duo two-step authentication for all interactive user and administrator logins.
For Globus Connect Personal, this does not apply, because the software runs as a single user.
For Globus Connect Server, the CILogon authentication method sends the user through SAML, which takes care of Duo for us.
In https://github.com/stanford-rc/globus.stanford.edu/blob/master/server/auth.md, at the end of the Authentication Options section, there is already a note saying that anyone with Medium Risk data should use CILogon.
So, we should be covered!
In MinSec for Applications, the Two-Step Authentication item has the following:
Require Duo two-step authentication for all interactive user and administrator logins.
For Globus Connect Personal, this does not apply, because the software runs as a single user.
For Globus Connect Server, the CILogon authentication method sends the user through SAML, which takes care of Duo for us.
In https://github.com/stanford-rc/globus.stanford.edu/blob/master/server/auth.md, at the end of the Authentication Options section, there is already a note saying that anyone with Medium Risk data should use CILogon.
So, we should be covered!