[Satosa-dev] SATOSA and step-up with Duo or the like
23 Apr
2019
23 Apr
'19
6:07 p.m.
I think that this is a great idea,
probably there would the need to configure also a selective policy, decide
which IdP needs MFA or, if MFA will be activated by default for every IdP,
which of them will be considered out from this policy.
If the MFA is already available IdP side this could be frustrating, so I
think that it could be a good Idea to put it in the proxy with selectables
IdP
Il giorno mar 23 apr 2019 alle ore 16:07 Scott Koranda <skoranda at gmail.com>
ha scritto:
Hi,
I know it has been talked about as "doable", but has anybody already
deployed SATOSA with a response microservice that implements a "step-up"
flow to leverage a second factor (like Duo) when the authenticating IdP
does not assert that MFA was used?
If so, are you considering sharing it and/or contributing it to the code
base?
If not, but you are considering such an implementation/deployment, can
you indicate if you are interested in collaborating on the development
and testing?
Thanks,
Scott K
_______________________________________________
Satosa-dev mailing list
Satosa-dev at lists.sunet.se
https://lists.sunet.se/listinfo/satosa-dev
--
____________________
Dott. Giuseppe De Marco
CENTRO ICT DI ATENEO
University of Calabria
87036 Rende (CS) - Italy
Phone: +39 0984 496945
e-mail: giuseppe.demarco at unical.it