-
Type:
New Feature
-
Status: Closed
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: None
-
Fix Version/s: 3.3.0
-
Component/s: Authentication
-
Labels:
We need a mechanism for combining at least 2 authentication factors (usually one being a password) to support use of technologies like Duo and U2F. This should be simple to configure, extensible to arbitrary factors, and handle step-up, SSO, ForceAuthn, etc.
Leaving open for now whether to try and extend this to more than two factors, but we have working code for two and that's by far the common case.