William Graboyes wrote:
Hi All,
I have done some searching around, and I am wondering if there is a way
to require OTP for certain hosts, and not for others.
Example:
Lets say that I want foo.example.com to force using 2FA because it is an
entry point into the network. However bar.example.com is only used
internally, and should not need 2FA authentication.
Is there a way to do this with OTP/2FA implementation, or is it only on
a user by user basis?
Not yet, see https://fedorahosted.org/freeipa/ticket/4875
rob
--
Manage your subscription for the Freeipa-users mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-users
Go to http://freeipa.org for more info on the project