Hello ,
I've check recommended solution from this issue , https://abp.io/support/questions/8185/2FA-Authenticator-App-Registering-form-after-login .
It works fine but we would like to ask about forcing an authenticator app wizard. Scenario :
- Login as a admin host
- Go to Administration - Settings - Account - Two Factor tab : Force Two factor authentication
Logout
Login as a tenant admin , without configured Authenticator App
The result - You are logged in
checked on pure tiered project using newest abp framework 9.0.2 , with @volo/account": "~9.0.2"
Expected result : User sees the authenticator app configuration wizard , configures the app and login with 2FA.
**Notes and thoughts: **
such expected scenario is a standard behaviour while logging in to application on which the 2factor authentication is enabled ( in example all microsoft applications , when do not recognize user , performs an authenticator app wizard just after loggin in )
from admin host perspective , when I set the Two factor option to Forced, I expect every user while loggin in to have an authenticator app wizard opened - if not configured.
ABP Framework version: v9.0.2
UI Type: Blazor Server
Database System: EF Core (SQL Server)
Tiered (for MVC) or Auth Server Separated (for Angular): yes
1 Answer(s)
-
0
Hi,
You need to set
Require confirmed emailorRequire confirmed phone numberto achieve this.
