Issue with MFA bypass
102 views
Skip to first unread message
Alexandre GRENIER
Feb 6, 2024, 4:06:51 AM2/6/24
to CAS Community
Hi,
I encountered an issue with Multifactor Authentication. I'm using CAS 6.6.x to access a few services.
Recently, I decided to activate MFA (with the "Simple" provider, but I don't think the kind of MFA provider has any incidence here) and to use principal attributes to bypass some users.
Everything seemed to work fine at first, bypass works has it should, but I then noticed that redirections between services do not work anymore for bypassed users.
To be more precise, the first time one asks to access a second service after having logged in:
- if MFA is off, everything works fine, the user is redirected
- if MFA is on but the user does not have a bypass, everything works fine
I encountered an issue with Multifactor Authentication. I'm using CAS 6.6.x to access a few services.
Recently, I decided to activate MFA (with the "Simple" provider, but I don't think the kind of MFA provider has any incidence here) and to use principal attributes to bypass some users.
Everything seemed to work fine at first, bypass works has it should, but I then noticed that redirections between services do not work anymore for bypassed users.
To be more precise, the first time one asks to access a second service after having logged in:
- if MFA is off, everything works fine, the user is redirected
- if MFA is on but the user does not have a bypass, everything works fine
- if MFA is on and the user DOES have a bypass, the redirection does not work and he is asked to log in again
It seems this issue is the same described in this older post I found : https://groups.google.com/a/apereo.org/g/cas-user/c/SsqrWJb3aIc
Would anyone know if there is a fix to this or encountered the same issue?
Thanks in advance,
It seems this issue is the same described in this older post I found : https://groups.google.com/a/apereo.org/g/cas-user/c/SsqrWJb3aIc
Would anyone know if there is a fix to this or encountered the same issue?
Thanks in advance,
Reply all
Reply to author
Forward
0 new messages