New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add a new operation note for MFA authentications #6112
Labels
freeapi
FreeIPA related issue
logging
needs triage
The issue will be triaged during scrum
RFE
Request for Enhancement
Comments
mreynolds389
added
RFE
Request for Enhancement
freeapi
FreeIPA related issue
needs triage
The issue will be triaged during scrum
logging
labels
Mar 1, 2024
mreynolds389
added a commit
to mreynolds389/389-ds-base
that referenced
this issue
Mar 1, 2024
Add a new operation note to indicate that a MFA plugin performed the BIND. This implies that the plugin must set the note itself as there is no other way to detect this: slapi_pblock_set_flag_operation_notes(SLAPI_OP_NOTE_MFA_AUTH); The purpose for this is for auditing needs Fixes: 389ds#6112 Reviewed by: ?
mreynolds389
added a commit
to mreynolds389/389-ds-base
that referenced
this issue
Mar 1, 2024
Add a new operation note to indicate that a MFA plugin performed the BIND. This implies that the plugin must set the note itself as there is no other way to detect this: slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH); The purpose for this is for auditing needs Fixes: 389ds#6112 Reviewed by: ?
mreynolds389
added a commit
to mreynolds389/389-ds-base
that referenced
this issue
Mar 1, 2024
Add a new operation note to indicate that a MFA plugin performed the BIND. This implies that the plugin must set the note itself as there is no other way to detect this: slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH); The purpose for this is for auditing needs Fixes: 389ds#6112 Reviewed by: ?
mreynolds389
added a commit
to mreynolds389/389-ds-base
that referenced
this issue
Mar 1, 2024
Add a new operation note to indicate that a MFA plugin performed the BIND. This implies that the plugin must set the note itself as there is no other way to detect this: slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH); The purpose for this is for auditing needs Fixes: 389ds#6112 Reviewed by: ?
mreynolds389
added a commit
to mreynolds389/389-ds-base
that referenced
this issue
Mar 1, 2024
Add a new operation note to indicate that a MFA plugin performed the BIND. This implies that the plugin must set the note itself as there is no other way to detect this: slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH); The purpose for this is for auditing needs Fixes: 389ds#6112 Reviewed by: ?
mreynolds389
added a commit
to mreynolds389/389-ds-base
that referenced
this issue
Mar 4, 2024
Add a new operation note to indicate that a MFA plugin performed the BIND. This implies that the plugin must set the note itself as there is no other way to detect this: slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH); The purpose for this is for auditing needs Fixes: 389ds#6112 Reviewed by: spichugi(Thanks!)
mreynolds389
added a commit
that referenced
this issue
Mar 4, 2024
Add a new operation note to indicate that a MFA plugin performed the BIND. This implies that the plugin must set the note itself as there is no other way to detect this: slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH); The purpose for this is for auditing needs Fixes: #6112 Reviewed by: spichugi(Thanks!)
mreynolds389
added a commit
that referenced
this issue
Mar 4, 2024
Add a new operation note to indicate that a MFA plugin performed the BIND. This implies that the plugin must set the note itself as there is no other way to detect this: slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH); The purpose for this is for auditing needs Fixes: #6112 Reviewed by: spichugi(Thanks!)
mreynolds389
added a commit
that referenced
this issue
Mar 4, 2024
Add a new operation note to indicate that a MFA plugin performed the BIND. This implies that the plugin must set the note itself as there is no other way to detect this: slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH); The purpose for this is for auditing needs Fixes: #6112 Reviewed by: spichugi(Thanks!)
mreynolds389
added a commit
that referenced
this issue
Mar 4, 2024
Add a new operation note to indicate that a MFA plugin performed the BIND. This implies that the plugin must set the note itself as there is no other way to detect this: slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH); The purpose for this is for auditing needs Fixes: #6112 Reviewed by: spichugi(Thanks!)
mreynolds389
added a commit
that referenced
this issue
Mar 4, 2024
Add a new operation note to indicate that a MFA plugin performed the BIND. This implies that the plugin must set the note itself as there is no other way to detect this: slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH); The purpose for this is for auditing needs Fixes: #6112 Reviewed by: spichugi(Thanks!)
mreynolds389
added a commit
that referenced
this issue
Mar 4, 2024
Add a new operation note to indicate that a MFA plugin performed the BIND. This implies that the plugin must set the note itself as there is no other way to detect this: slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH); The purpose for this is for auditing needs Fixes: #6112 Reviewed by: spichugi(Thanks!)
mreynolds389
added a commit
that referenced
this issue
Mar 4, 2024
Add a new operation note to indicate that a MFA plugin performed the BIND. This implies that the plugin must set the note itself as there is no other way to detect this: slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH); The purpose for this is for auditing needs Fixes: #6112 Reviewed by: spichugi(Thanks!)
7910187..aead888 389-ds-base-3.0 -> 389-ds-base-3.0 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Labels
freeapi
FreeIPA related issue
logging
needs triage
The issue will be triaged during scrum
RFE
Request for Enhancement
For auditing purposes we need a new operation note to provide more information about a bind, specifically from a OTP/MFA plugin. So the plugin would use the Slapi API to set the new "note" flag, and we would add a new message to the BIND or RESULT access & security log entry.
The text was updated successfully, but these errors were encountered: