Feature request: Force MFA to reprompt on any re/connect
B
Ben Thul
started a topic
9 days ago
I have servers set up in my environment to use a RoyalTS
credential with MFA enabled. This works most of the time, but sometimes
I'm unlucky and the TOTP is incorrect (maybe clock drift between the
server and my MFA device). When this happens, it appears that RoyalTS is
defaulting to prompting for username/password. I also see this behavior on reconnect (what appears to happen is
that it resends the MFA-enhanced credentials from the initial
connection, but the TOTP token is no longer valid and so authentication
fails and I'm left to manually input the credentials).
What I'd like to have happen instead is for RoyalTS to prompt for the MFA again and re-tokenize the username or password (as configured in the RoyalTS Credential) and present that to the server.
Ben Thul
I have servers set up in my environment to use a RoyalTS credential with MFA enabled. This works most of the time, but sometimes I'm unlucky and the TOTP is incorrect (maybe clock drift between the server and my MFA device). When this happens, it appears that RoyalTS is defaulting to prompting for username/password. I also see this behavior on reconnect (what appears to happen is that it resends the MFA-enhanced credentials from the initial connection, but the TOTP token is no longer valid and so authentication fails and I'm left to manually input the credentials).
What I'd like to have happen instead is for RoyalTS to prompt for the MFA again and re-tokenize the username or password (as configured in the RoyalTS Credential) and present that to the server.