lwz8v (lwz8v) asked a question.
Okta MFA with Active Directory + SSSD integration on Linux server
We have self hosted Windows Active Directory (AD) setup, which are in sync with Okta by its agent running on domain controller.
This AD setup is then integrated with both Linux and Windows servers for login purpose.
For linux, we are using sssd as pam module and its able to allow users to ssh to servers with their Okta user name and password.
Now, our requirement is we want to enable MFA whenever user tries to ssh to bastion/jump hosts using Okta user name and password.
Is there any official support for this requirement from Okta side?
Any documentations / links can give us the lead to achieve this.
Thanks in advance.
Hello @lwz8v (lwz8v)
I hope you are having a great day
Thank you for posting, this guide teaches you how to configure Okta MFA for Microsoft ADFS: https://www.okta.com/integrations/okta-mfa-for-microsoft-adfs/
Have a great day ahead
Henry E.
Okta Inc
Hi @User16308869954358539580 (Okta)
Thanks for the prompt reply.
We want to setup MFA on SSH access which uses Active Directory (AD) and AD has users and groups from Okta via Okta agent.
So, do we have any way to have MFA while ssh accessing linux servers which are connected to AD ?