Hi Rakesh, MFA is generally done via an IAM rather than on a per-application basis. As Simon had mentioned, CloudStack does support SAML / LDAP so, in a general / corporate use case, the MFA would go there. So I do not think adding support for 2FA will add any significant benefit That being said, I'll be happy to review any PR that's raised ________________________________ From: Simon Weller <swel...@ena.com.INVALID> Sent: Wednesday, August 11, 2021 12:31 AM To: users <us...@cloudstack.apache.org>; dev <dev@cloudstack.apache.org> Subject: Re: 2FA
Rakesh, ACS does support SAML2 and in order to deploy 2FA/MFA, you could integrate it with an Identity and Access Management System such as Keycloak (https://www.keycloak.org/). -Si ________________________________ From: Rakesh Venkatesh <www.rakeshv....@gmail.com<http://www.rakeshv....@gmail.com>> Sent: Tuesday, August 10, 2021 4:34 AM To: users <us...@cloudstack.apache.org>; dev <dev@cloudstack.apache.org> Subject: 2FA Hello Has anyone thought about 2FA or about how to implement it in cloudstack? Looks like this will be good addition to enhance the security. I have some idea about implementing in the backend but dont have much idea on how to display the QR code in ui or other functionalities which is needed for frontend part. -- Thanks and regards Rakesh
