Loading...

XML

Word

Printable

Type: Story
Resolution: Done-Errata
Priority: Undefined
Fix Version/s: rhel-9.4.z
Affects Version/s: rhel-9.4
Component/s: 389-ds-base
Labels:
None

Fixed in Build:
389-ds-base-2.4.5-6.el9_4
Severity:
Medium
Epic Link:
FREEIPA-10509
Keywords:

0day
Customer Impact:

Customer Escalated

Pool Team:

rhel-sst-idm-ds
Sub-System Group:

ssg_idm

Story Points:
0
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Product Documentation Required:
None
Sprint:
None

Preliminary Testing:
None
Errata Link:
https://errata.engineering.redhat.com/advisory/129634
Test Coverage:
None

Experience:

PX Review Complete:
PX Scheduling Request:
SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Planning:
None

Goals

allows a plugin to log, in access and security logs, the fact that an operation (bind) is done with multi-factor authentication

Acceptance Criteria

A list of verification conditions, successful functional tests, or expected outcomes in order to declare this story/task successfully completed.

The expected behavior is described in this design
When a user entry requires OTP token and OTP plugin (IDM) is properly configured (EnforceLDAPOTP)

- if access logs are enabled, then a BIND result contains
  notes=M details="Multi-factor Authentication"
- if security logs are enabled the BIND_METHOD contains
  "SIMPLE\/MFA"

links to

RHEA-2024:129634 389-ds-base enhancement update

mentioned on

Commit - Bump version to 2.4.5-6

Assignee:: Simon Pichugin

Reporter:: Thierry Bordaz

Developer:: IdM DS Dev

QA Contact:: IdM DS QE

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Created:: 2024/03/27 11:19 AM

Updated:: 2024/11/07 8:56 AM

Resolved:: 2024/04/30 2:37 PM

Release Date:: 2024/04/30