Would someone be able to point me in the right direction to set up SImpleSAML and Privacy idea as a 2 step login process?
I have synced PrivacyIdea with LDAP and connected simplesamlphp using PrivacyIDEA as an austhsource.
I set a policy using otppin=userstore so I can use LDAP password instead of user pin. I can successfully login from simplesaml using LDAP Username, LDAPPassword+OTP.
I would like to configure it so the login page is a two step process.
Step 1/Page 1: LDAP Username + LDAP password
Step2/Page 2: OTP code
I would also like to add an IP policy in.so MFA process is only required from outside the office IP range.
How would I go about implementing this?