e running an overlay.
>
>
>
> *From:* cas...@apereo.org [mailto:cas...@apereo.org
> ] *On Behalf Of *Klint
> *Sent:* Thursday, June 16, 2016 12:32 PM
> *To:* CAS Developer <cas...@apereo.org >
> *Cc:* mmoa...@unicon.net
> *Subject:* Re: [cas-dev] CAS v5 M2 P
Some more information on the issue:
In the logs it shows what looks like a successful login, but the user is
not prompted for MFA-Duo when they are a member of the group, and on the
client I get the following error response from the CAS server.
INVALID_AUTHENTICATION_CONTEXT
The validation
I have been working on getting MFA-Duo to trigger only when a user is a
member of a specific group. I have been able to use the "
principalAttributeNameTrigger" and the "principalAttributeValueToMatch" to
match single value attributes. Is it possible to filter the mfa-duo based
on a multi-value