Conditional restriction

  • Resolved bttmrc

    (@bttmrc)


    1 year, 5 months ago

    We want all website admins to have 2FA enabled. However, we are using an SSO plugin that allows Azure group members to log in to the website.

    Some users fall into both categories: they are admins and also use SSO. For these users, we don’t want or need to enforce 2FA.

    Is there a way to create a condition to handle this? Users logging in via SSO are assigned a specific user role.

    I initially thought that enabling “ENFORCE 2FA” for Admins and excluding the SSO user role would work, but it doesn’t seem to function as expected.

    My concern is scalability—if we want to enforce 2FA for additional user roles beyond admins, adding exceptions for each user individually isn’t practical. Do you have any suggestions for managing this setup effectively?

Viewing 1 replies (of 1 total)
  • Plugin Contributor robertabela

    (@robert681)

    1 year, 5 months ago

    Thank you for trying our plugin @bttmrc

    I am afraid that at the moment it is not possible to create such a condition. However, we are looking into supporting SSO in future updates, so this should not be an issue then because the plugin would recognize that a user is already logged in.

    I am sorry I do not have a more positive answer for you today. Should you have any further questions, please do not hesitate to ask.

    Have a great weekend.

Viewing 1 replies (of 1 total)

The topic ‘Conditional restriction’ is closed to new replies.