Add a new operation note for MFA authentications #6112
Assignees
Labels
freeapi
FreeIPA related issue
logging
needs triage
The issue will be triaged during scrum
RFE
Request for Enhancement
Comments
mreynolds389
added
RFE
mreynolds389
added a commit
to mreynolds389/389-ds-base
that referenced
this issue
Mar 1, 2024
Add a new operation note to indicate that a MFA plugin performed the
BIND. This implies that the plugin must set the note itself as there is
no other way to detect this:
slapi_pblock_set_flag_operation_notes(SLAPI_OP_NOTE_MFA_AUTH);
The purpose for this is for auditing needs
Fixes: 389ds#6112
Reviewed by: ?
mreynolds389
added a commit
to mreynolds389/389-ds-base
that referenced
this issue
Mar 1, 2024
Add a new operation note to indicate that a MFA plugin performed the
BIND. This implies that the plugin must set the note itself as there is
no other way to detect this:
slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH);
The purpose for this is for auditing needs
Fixes: 389ds#6112
Reviewed by: ?
mreynolds389
added a commit
to mreynolds389/389-ds-base
that referenced
this issue
Mar 1, 2024
Add a new operation note to indicate that a MFA plugin performed the
BIND. This implies that the plugin must set the note itself as there is
no other way to detect this:
slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH);
The purpose for this is for auditing needs
Fixes: 389ds#6112
Reviewed by: ?
mreynolds389
added a commit
to mreynolds389/389-ds-base
that referenced
this issue
Mar 1, 2024
Add a new operation note to indicate that a MFA plugin performed the
BIND. This implies that the plugin must set the note itself as there is
no other way to detect this:
slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH);
The purpose for this is for auditing needs
Fixes: 389ds#6112
Reviewed by: ?
mreynolds389
added a commit
to mreynolds389/389-ds-base
that referenced
this issue
Mar 1, 2024
Add a new operation note to indicate that a MFA plugin performed the
BIND. This implies that the plugin must set the note itself as there is
no other way to detect this:
slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH);
The purpose for this is for auditing needs
Fixes: 389ds#6112
Reviewed by: ?
mreynolds389
added a commit
to mreynolds389/389-ds-base
that referenced
this issue
Mar 4, 2024
Add a new operation note to indicate that a MFA plugin performed the
BIND. This implies that the plugin must set the note itself as there is
no other way to detect this:
slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH);
The purpose for this is for auditing needs
Fixes: 389ds#6112
Reviewed by: spichugi(Thanks!)
mreynolds389
added a commit
that referenced
this issue
Mar 4, 2024
Add a new operation note to indicate that a MFA plugin performed the
BIND. This implies that the plugin must set the note itself as there is
no other way to detect this:
slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH);
The purpose for this is for auditing needs
Fixes: #6112
Reviewed by: spichugi(Thanks!)
mreynolds389
added a commit
that referenced
this issue
Mar 4, 2024
Add a new operation note to indicate that a MFA plugin performed the
BIND. This implies that the plugin must set the note itself as there is
no other way to detect this:
slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH);
The purpose for this is for auditing needs
Fixes: #6112
Reviewed by: spichugi(Thanks!)
mreynolds389
added a commit
that referenced
this issue
Mar 4, 2024
Add a new operation note to indicate that a MFA plugin performed the
BIND. This implies that the plugin must set the note itself as there is
no other way to detect this:
slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH);
The purpose for this is for auditing needs
Fixes: #6112
Reviewed by: spichugi(Thanks!)
mreynolds389
added a commit
that referenced
this issue
Mar 4, 2024
Add a new operation note to indicate that a MFA plugin performed the
BIND. This implies that the plugin must set the note itself as there is
no other way to detect this:
slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH);
The purpose for this is for auditing needs
Fixes: #6112
Reviewed by: spichugi(Thanks!)
mreynolds389
added a commit
that referenced
this issue
Mar 4, 2024
Add a new operation note to indicate that a MFA plugin performed the
BIND. This implies that the plugin must set the note itself as there is
no other way to detect this:
slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH);
The purpose for this is for auditing needs
Fixes: #6112
Reviewed by: spichugi(Thanks!)
mreynolds389
added a commit
that referenced
this issue
Mar 4, 2024
Add a new operation note to indicate that a MFA plugin performed the
BIND. This implies that the plugin must set the note itself as there is
no other way to detect this:
slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH);
The purpose for this is for auditing needs
Fixes: #6112
Reviewed by: spichugi(Thanks!)
mreynolds389
added a commit
that referenced
this issue
Mar 4, 2024
Add a new operation note to indicate that a MFA plugin performed the
BIND. This implies that the plugin must set the note itself as there is
no other way to detect this:
slapi_pblock_set_flag_operation_notes(pb, SLAPI_OP_NOTE_MFA_AUTH);
The purpose for this is for auditing needs
Fixes: #6112
Reviewed by: spichugi(Thanks!)
|
7910187..aead888 389-ds-base-3.0 -> 389-ds-base-3.0 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
For auditing purposes we need a new operation note to provide more information about a bind, specifically from a OTP/MFA plugin. So the plugin would use the Slapi API to set the new "note" flag, and we would add a new message to the BIND or RESULT access & security log entry.
The text was updated successfully, but these errors were encountered: