Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted

Will R80.30 Gaia Portal support 2FA login?

Jump to solution

Hi,

I have tried the radius connection to Gaia portal and successfully connect.

When i try to login to Gaia Portal with 2FA authentication, only the 1st factor is working but the login process seem stuck at login page. The 2nd factor, TOTP doesn't appear. It keep at the login page.

LOG>>> 

Sat Sep 28 20:35:39 2019 (UTC+0800) : Info: User aausr02 was failed to complete method TOTP:1 and probably will try again
Sat Sep 28 20:35:39 2019 (UTC+0800) : Info: User aausr02 going to continue RADIUS authentication using chain ldap_totp via method TOTP:1
Sat Sep 28 20:35:39 2019 (UTC+0800) : Info: User aausr02 was failed to complete method LDAP_PASSWORD:1 and probably will try again
Sat Sep 28 20:35:39 2019 (UTC+0800) : Info: User aausr02 going to continue RADIUS authentication using chain ldap_totp via method LDAP_PASSWORD


However, it's working and login to GAIA portal successfully if enable with LDAP connection via Radius.

LOG >>> 

Sat Sep 28 20:36:15 2019 (UTC+0800) : Info: User aausr02 was sucessfully authenticated on RADIUS server via LDAP Password Only chain


Anyone tried 2FA to GAIA portal successfully? Or 2FA to Gaia Portal is not supported?

Thank you.

0 Kudos
1 Solution

Accepted Solutions
Highlighted
7 Replies
Highlighted
Admin
Admin
The Gaia portal doesn't support multiple password prompts, which would be needed to support some forms of MFA.
0 Kudos
Highlighted
Gold

We are using 2FA with Gemalto OTP and RSA SecurID. Both are working fine for login to GAiA GUI and both are using RADIUS. You have to type both factors in one field ( password field ) if you login.

If you have a solution like Damon mentioned you can‘t use it.

Wolfgang

0 Kudos
Highlighted

Good to know. Okta also offers this option.

0 Kudos
Highlighted

Does Duo also support this?

0 Kudos
Highlighted
Highlighted
Yea Man, have to use the additional ' to join the 1st and 2nd factor password to login. Some vendor will use &.
0 Kudos
Highlighted
Thanks guys for the quick reply
0 Kudos