You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
What would you like Teleport to do?
Add functionality to force SSO users to reauthenticate when logging into Teleport. In SAML, we could do this by implementing the ForceAuthn parameter. In OIDC, we could use prompt-login or max_age parameters.
What problem does this solve?
Currently, when using SSO to login to Teleport, we check for a valid SSO session, and if one is present which is valid for Teleport usage, we allow the login automatically. A customer has requested that we force reauthentication into the SSO provider using the above parameters, given that Teleport has access to sensitive information.
If a workaround exists, please include it.
The text was updated successfully, but these errors were encountered:
What would you like Teleport to do?
Add functionality to force SSO users to reauthenticate when logging into Teleport. In SAML, we could do this by implementing the ForceAuthn parameter. In OIDC, we could use prompt-login or max_age parameters.
What problem does this solve?
Currently, when using SSO to login to Teleport, we check for a valid SSO session, and if one is present which is valid for Teleport usage, we allow the login automatically. A customer has requested that we force reauthentication into the SSO provider using the above parameters, given that Teleport has access to sensitive information.
If a workaround exists, please include it.
The text was updated successfully, but these errors were encountered: