[Koha-bugs] [Bug 20476] Two factor authentication for the staff client - omnibus

bugzilla-daemon at bugs.koha-community.org bugzilla-daemon at bugs.koha-community.org
Mon Mar 26 20:32:34 CEST 2018


https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20476

Jon Knight <J.P.Knight at lboro.ac.uk> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |J.P.Knight at lboro.ac.uk

--- Comment #3 from Jon Knight <J.P.Knight at lboro.ac.uk> ---
Is there an issue with using a pre-existing tool such as PrivacyIDEA
(https://github.com/privacyidea/privacyidea) that already does 2FA (in lots of
different forms)? Does it really need to be rolled into the Koha code base,
rather than allowing sysadmins to use external 2FA support? They might need to
do anyway if their Koha installation is just one small service in a much larger
organisation that already uses 2FA, so if it was bolted inside Koha it would
need to be done in a way that could be turned off if external 2FA services were
being used.

Just for completeness I should mention that we've tested PrivacyIDEA 2FA with
YubiKeys tied into SAML2.0 authentication using simpleSAMLphp as the IdP and it
works OK. Not deployed in production yet as someone would have to come up with
a budget for all the Yubikeys we'd need!

-- 
You are receiving this mail because:
You are the assignee for the bug.
You are watching all bug changes.


More information about the Koha-bugs mailing list