Database MFA with fixed seed/security-key with TOTP

0 vote

Published 2 years ago

Hi!

Database-MFA is great, but the secret-key is always generated dynamically with TOTP.

Feature-Request: Please add the option to enter the desired TOTP security-key manually:

Background: We are using Feitian-tokens, that are already working with RDM, but as they can only support ONE seed, that is mostly "pre-programmed", I need to be able to "pre-set" the parameter.

Question 1: Is this possible?
Question 2: Is it possible to write the desired security-key to the SQL-database until the feature is available?

Thank you for your help and best wishes
Phil

61fcf10d-853e-4087-8a27-103ca357d990.png

All Comments (4)

Hubert Mireault

Published 2 years ago

Hello,

It's not possible right now but I don't see why we couldn't allow it. I have opened an internal ticket.

Regards,

Hubert Mireault

Clemens Schittenberger

Published 2 years ago

we'd need that feature too! ;)

Thanks!

Best regards,
Clemens

Clemens Schittenberger

Published 2 years ago

I just had another idea: we have a handfull of users that have such a hardware token ... is it possible to use the free Devolutions Server to authenticate these against our RDM SQL database? I mean technically and legally?
thx!
Best regards,
Clemens

François Dubois

Published 2 years ago

Hello Clemens,

With Devolutions Server, it is possible to configure a TOTP on the user login. If you migrate to Devolutions Server, they MFA validation would not be done by RDM but directly by Devolutions Server during the login process. Here is how we configure a TOTP on a user.

For now, like RDM, we don't allow the user to set the key himself. I could create a ticket on our side to improve that. Does it make sense for you ?

Best regards,

François Dubois

ef23bdee-2ef8-4f8f-9ca2-a5e5e295b7c8.png