William Graboyes wrote:
I have done some searching around, and I am wondering if there is a way
to require OTP for certain hosts, and not for others.
Lets say that I want foo.example.com to force using 2FA because it is an
entry point into the network. However bar.example.com is only used
internally, and should not need 2FA authentication.
Is there a way to do this with OTP/2FA implementation, or is it only on
a user by user basis?
Not yet, see https://fedorahosted.org/freeipa/ticket/4875
Manage your subscription for the Freeipa-users mailing list:
Go to http://freeipa.org for more info on the project