how can we enable 2FA on the privacyIDEA webUI itself for all users from active direcory relam, mandatory?
You can do this via the corresponding webui policy.
I have tried TOTP and it is working fine
Following policies, you need to check for TOTP.
For WebUI
Go to Actions tab open Miscellaneous
- select Login_mode and select privacyIDEA option from selection box.
For User
A. From Enrollment
Select enrollTOTP
B. From miscellaneous
Select totp_2step with force option
Select totp_force_server_generate and auditlog
C. From Token
Select assign, enable, resync and reset
D. From Pin
Select enrollpin
1 Like