Thank you for the reply, Martin.
This is what I'd expected, even though I was hoping for a workaround. ;-)
The per-service OTP is a hot button for us, as well as sudo.
For now, we'll go the PrivacyIDEA + RADIUS route for OTP, and look
forward to all the future awesomeness!
-Kurt
On 7/24/15, 1:4
On 07/16/2015 06:58 PM, Bendl, Kurt wrote:
I'm planning our implementation of IdM/IPA, and I'm unclear about how I can
implement IPA's OTP for privileged access.
I need to be able to set up systems so:
* accounts can auth using traditional userid/password
* privileged access (sudo) require
I'm planning our implementation of IdM/IPA, and I'm unclear about how I can
implement IPA's OTP for privileged access.
I need to be able to set up systems so:
* accounts can auth using traditional userid/password
* privileged access (sudo) requires OTP
We've done some testing, injecting a 3rd