Welcome to our community!

Allow changing the attribute used for 2FA for Active Directory users

Avatar
bneste
  • updated
  • Archived

If you use LDAP authentication you can tell Control to pull the token information for a user from a specific attribute rather than 'Description'. This is not an option when using Active Directory authentication and you're forced to use the user Description field. This is an issue (for us at least) and we'd rather use some other less commonly used attribute. Add the ability to change the attribute to look in.

Replies 4
Avatar
0
Adam Gardner

We'd like this as well; just switching to LDAP authentication instead of Active Directory unfortunately isn't an option for us because the LDAP authentication setup doesn't seem to support filter extensions such as LDAP_MATCHING_RULE_IN_CHAIN.

Avatar
1
Derek Howard

This is a pretty high priority for us over here as well. As much as we love Control, if we can't get proper 2FA going without modifying the Description field, I think we might need to not renew. :\

Avatar
0
nathaniel roudebush

I don't know how this isn't a thing.  Connectwise claims AD integration with 2FA but makes it impossible for 90% of companies. Seems like false advertising to me.

Avatar
0
Preston Bishop Team Member
  • Archived
 Commenting is disabled

Top contributors
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar
Avatar