Add OTP challenge for specific objects
1 vote
I'd like to be able to further protect certain passwords, entries, etc. in both shared and user vaults using OTP or similar.
Currently I use account X to access RDM/DVLS, in here I have credential Y stored that I'd like to further protect from anyone should they gain access to my account.
This way I would be able to configure that accessing a certain entry would require a OTP filled in before showing password, connecting to server, etc.
I'd also expect my users to configure certain parts of their user vault with a OTP protection...
Thanks
All Comments (3)
Hello,
Thank you for your request. If my understanding is correct, we received a similar request here: https://forum.devolutions.net/topics/50442/enhanced-access-control-for-sensitive-information
As my colleague mentioned in that thread:
We are planning to take a first step regarding this in our PAM functionalities. We plan to allow, for example, prompting for MFA before accessing a privileged account.
After this, we will need to devise a solution that would be applicable for 'regular' entries, which comes with its challenges, especially when considering the need to validate checks server-side. All of this to say, we are making some steps in this direction but we do not have a clear path just yet.
Let me know if I understood your request correctly.
Best regards,
François Dubois
Hi François.
Yes, exactly something like that. I've added a vote to said topic as well, so I guess we can close this down again.
Thanks.
Hello,
Thank you for your answer. I marked that thread as a duplicate of the other thread. Like I said, we are working on an improvement in PAM, but we will see later if we can extend it to all entries.
Best regards,
François Dubois