On Fri, Feb 20, 2015 at 04:33:58PM +0100, Sumit Bose wrote: > > I'm curious about the splitting. Can you learn what the factors are if > > the service doesn't offer the smart prompting? (For instance, if OTP > > users only ever logged in with SSH) > > no, in this case we always do 1FA from the SSSD point of view as we do > now.
Which means we would never have the offline support..this is something we need to document. Then again, offline support is mostly useful for workstations, where you're likely to use a login method that allows smarter prompting. _______________________________________________ sssd-devel mailing list sssd-devel@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/sssd-devel
