Hi,
per default I want my users to connect using their password + OTP which is
configured in a policy. For my monitoring application I could successfully
bypass the required OTP by creating a new user without assigned token.
Is it also possible to create a policy for users with token to bypass OTP?
Thanks,
Raoul
There are myriads of scenarios and workflows.
Yes.
It depends how you understand “bypass”.Am Mittwoch, 1. Februar 2017 17:27:23 UTC+1 schrieb Raoul:
Hi,
per default I want my users to connect using their password + OTP which is
configured in a policy. For my monitoring application I could successfully
bypass the required OTP by creating a new user without assigned token.
Is it also possible to create a policy for users with token to bypass OTP?Thanks,
Raoul
Yes, I can imagine and checked also probably only half of it as I couldn’t
think a good combination together.
By bypassing I mean to not ask for the OTP token even the user has an
assigned token when he is connecting from a specific source ip.
RegardsOn Thursday, February 2, 2017 at 11:13:53 AM UTC+1, Cornelius Kölbel wrote:
There are myriads of scenarios and workflows.
Yes.
It depends how you understand “bypass”.Am Mittwoch, 1. Februar 2017 17:27:23 UTC+1 schrieb Raoul:
Hi,
per default I want my users to connect using their password + OTP which
is configured in a policy. For my monitoring application I could
successfully bypass the required OTP by creating a new user without
assigned token.
Is it also possible to create a policy for users with token to bypass OTP?Thanks,
Raoul