Rocket.chat: Require Two Factor Auth for external authenticators
Rocket.Chat Version: 0.55.1
Running Instances: 1
DB Replicaset OpLog: off
Node Version: 4.7.3
Hello Devs.
I have an issue with 2FA. After enabling it i can still login without entering a 2FA code. Is that a known issue?
thanks and cheers
ghost
All 14 comments
I just found similar behaviour. We let SAML handle the authentication and just wanted to try out 2FA. But after enabling it, I still get immediately logged in without any 2FA check.
Or is this a feature from your point of view? One could argue that 2FA should also happen on the SAML authentication layer …
patrickhanft
on 29 Apr 2017
Same Issue here with Active Directory as LDAP backend.
shakalandy
on 11 May 2017
We'll look into requering 2FA for any authentication method.
sampaiodiego
on 26 May 2017
Thanks for looking into this! Is there a timeline for this? We use AD as the LDAP backend and have a hard requirement for 2FA which is preventing us from rolling out a large scale deployment.
sc10n
on 7 Jun 2017
We're also interested in activating 2FA for our RocketChat Setup which currently uses LDAP authentication.
baurmatt
on 21 Jun 2017
Any news regarding this issue?
wiegandsh
on 4 Jul 2017
Any progress on that matter?
ghost
on 30 Dec 2017
Hello
Any news ?
EtienneBer
on 24 Jan 2018
Possible to sponsor this one? Maybe via Bountysource?
shakalandy
on 1 Mar 2018
@shakalandy it was already implemented and will be included in one of the next releases.
Hudell
on 6 Jun 2018
In which release are you plan to add it? We want to use it ASAP.
marcinkorzycki
on 9 Jul 2018
Any news regarding this issue? 2 FA Authentication is bypassed when using LDAP auth.
midse
on 13 Feb 2019
👀
wreiske
on 12 Apr 2019
Tested this in 1.0.0-rc.2 and 0.74.3 and 2FA is bypassed when using LDAP still.
karlettoh
on 15 Apr 2019
Related issues
Buzzele
·
3Comments
Buzzele
·
3Comments
mddvul22
·
3Comments
karlprieb
·
3Comments
mattlin
·
3Comments