MFA and XNAT
88 views
Skip to first unread message
Duncan Smith
Jul 19, 2023, 8:08:25 AM7/19/23
to xnat_discussion
Hi all,
I'm currently in the process of helping setup an XNAT on virtual machines hosted within a clinical environment, with the XNAT needing to be publicly accessible. Because of these two conditions, we are required to enforce MFA before we can proceed.
Unfortunately I have no experience setting up MFA for XNAT, or more generally. I've heard there may be an MFA plugin in the works but I've not seen any official mention of this - is this something that is being looked at and/or developed?
Unfortunately I have no experience setting up MFA for XNAT, or more generally. I've heard there may be an MFA plugin in the works but I've not seen any official mention of this - is this something that is being looked at and/or developed?
Alternatively, I wonder if there is a way to use either the LDAP or OpenID external authentication methods to provide MFA from an external system. Is this something that is viable, and if so, do you have any guidance to help me in the right direction?
Thanks for your help,
Duncan
Kate Alpert
Jul 19, 2023, 9:50:33 AM7/19/23
to xnat_di...@googlegroups.com
Hi, Duncan,
We encourage the decision to use external authentication methods and offer both an LDAP plugin and an OpenID plugin (we are aiming to release 1.3.1 with some configuration improvements in the next few weeks).
We are indeed working on an MFA plugin to use with XNAT authentication, but we haven't yet set a release date. Feel free to build yourself and try in development and send us your feedback!
Best,
Kate
--
You received this message because you are subscribed to the Google Groups "xnat_discussion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to xnat_discussi...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/xnat_discussion/61355890-403c-4099-a2fe-1d16f0fffe62n%40googlegroups.com.
Duncan Smith
Jul 21, 2023, 7:27:33 AM7/21/23
to xnat_discussion
Hi Kate,
Thanks for the information here, that's useful to know the MFA Plugin is in development. For the release date, are you able to provide a rough estimate at the moment (even if it's whether it will be this year or not)? If it's not likely to be near/medium term, then we will need to explore other options as it's a blocker for us at the moment.
Thanks,
Duncan
Will Horton
Aug 8, 2025, 4:39:35 PMAug 8
to xnat_discussion
Hello Duncan,
Just following up on this thread with good news, there is now an open-source release of the MFA plugin for XNAT with working integration with Google Authenticator. Here is the full announcement: https://groups.google.com/g/xnat_discussion/c/5BSpikeQHhI
Regards,
Will
Reply all
Reply to author
Forward
0 new messages