2FA for SSO accounts

Collapse
X
Collapse
 
  • Page of 1
  • Time
  • Show
Clear All
new posts
Previous template Next
  • emillod
    Active Community Member
    • Apr 2017
    • 1405
    #1

    2FA for SSO accounts

    Hello Guys,
    i have a regular user in espo which have 2FA enabled and after that he can't log in through SSO. I don't know whether it's a bug, because that may be your approach, but maybe it should be handled differently, because enabling 2FA for such users would be more secure
    Tags: None
    • yuri
      Member
      • Mar 2014
      • 8451
      #2
      Hi,

      It's stated in docs that 2FA is not guaranteed. When using a 3rd party authentication provider, it's reasonable to also use their 2FA.
      If you find EspoCRM good, we would greatly appreciate if you could give the project a star on GitHub. We believe our work truly deserves more recognition. Thanks.

        Comment

        • yuri
          #2.1
          yuri commented
          06-17-2023, 07:45 AM
          Editing a comment
          > it should be handled differently

          It would mean quite an overhaul which not worth the effort. The current approach is quite elegant and well tested.

          If your provider can enable allowing re-use of issued authorization code (for a few minutes is enough), Espo 2FA should work.
        • emillod
          Active Community Member
          • Apr 2017
          • 1405
          #3
          Thanks Yuri for fast response.
          I got you. I understand

            Comment

            Previous template Next
            Working...