What are people using for 2FA / 'trust this device...
# cfml-generals
sknowlton
10/27/2022, 3:53 PMWhat are people using for 2FA / 'trust this device' & text a code to a phone number? rolling your own? auth0? something else?
r
Rodney
10/27/2022, 4:00 PMWe have used texting a code to a phone number and OAuth.
t
tonyjunkes
10/27/2022, 4:38 PMWe rolled our own, creating/managing the code ourselves and then send via twilio/sendgrid.
s
sknowlton
10/27/2022, 4:39 PMYeah it seems pretty easy to do
d
Dave Merrill
10/27/2022, 5:36 PMWe're moving to Okta SSO, which provides that and other stuff.
d
danmurphy
10/27/2022, 6:10 PMDid a search in forgebox and this came up. Maybe it is helpful?
https://forgebox.io/view/totp
f
Frank Alvarez
10/27/2022, 10:48 PMI’ve used authy from Twilio before. Worked well.
h
hemi345
10/28/2022, 3:47 PMUsing CF's builtin SAML2 package with my university's Shibboleth SSO and Duo MFA.
t
tia
10/28/2022, 4:48 PMDUO with their AD integration, so no code changes other than pointing to a new server
5 Views