Hello,
I am currently using PrivacyIDEA 3.10.2 and have successfully enabled Push Token (Polling mode, without Firebase).
We want to integrate PrivacyIDEA Push authentication into the Windows login process. The desired workflow is:
- The user enters their Active Directory username and password on the Windows login screen.
- After submitting the credentials, PrivacyIDEA sends a Push Notification to the user’s mobile phone.
- The user approves the request on their PrivacyIDEA Authenticator app, and Windows grants access after successful verification.
Currently, we are using PrivacyIDEA RADIUS to connect to Windows NPS (Network Policy Server) for MFA, but we are unsure whether Push Token authentication can be integrated into the Windows login flow.
My Questions:
- Is it possible to use PrivacyIDEA Push Token directly for Windows Logon authentication?
- If so, how can we configure it?
- Does PrivacyIDEA provide a Windows Credential Provider Plugin, or would this require a custom solution?
- Is there any recommended approach for integrating PrivacyIDEA Push authentication into Windows login?
Any advice or guidance on this would be greatly appreciated. Thank you!