Am Thu, Nov 21, 2024 at 09:39:44AM -0000 schrieb seojeong kim via sssd-users: > if it's an expected behavior then, > let's say user ssh logged with pwd + otp for FirstFactor and Second Factor. > user put single string twice. > > and then after client goes to SSSD offline mode, user can ssh login with > password only ? > When I have a test for this case, I can successfully log in with password > only. is that also normal working?
Hi, if both factors are entered in the single string SSSD cannot determine what is the long term password (first factor) and as a result offline authentication with only the long term password will not work. We added the two step prompting to make sure SSSD can safely determine what the long term password is and then stored a hash of it in the cache for offline authentication. bye, Sumit > -- > _______________________________________________ > sssd-users mailing list -- [email protected] > To unsubscribe send an email to [email protected] > Fedora Code of Conduct: > https://docs.fedoraproject.org/en-US/project/code-of-conduct/ > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedorahosted.org/archives/list/[email protected] > Do not reply to spam, report it: > https://pagure.io/fedora-infrastructure/new_issue -- _______________________________________________ sssd-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
