-
Notifications
You must be signed in to change notification settings - Fork 259
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Unable to MFA on aws-azure-login using MS Authenticator app #296
Comments
MS has rolled out changes, it happened in my Org also, as workaround we route traffic to tunnel instead split tunnel in our VPN |
This program is useless now, if its not updated than we need to find other solution |
Still working OK, using the Node module installed locally in an NVM bin:
I had no end of trouble until I worked out the right app ID URI to use - https://signin.aws.amazon.com/saml#3 |
This is clearly not using the |
This is, however, clearly using the module without a GUI. It works. If it's only the Docker image you're concerned with then you need to state that. |
from what i tested it seems that issue is only on some mobile devices, seen issue with Pixel and Xiaomi, Samsung was able to work without gui in CLI mode and presented 2 digits and passed the push notification. |
I had the same issue in docker on WSL2 following the number matching being enabled on Authenticator in that the docker container doesn't display the number for the authentication process. As I'm on Windows 11, Linux GUI apps are enabled by default to am able to use X passthrough using the following (in case it helps anyone else):
|
@gfrid the application itself supports the MFA number check, per #266, but when this project was rebranded from sportradar to this org, they didn't keep up with publishing new Docker images. A maintainer in #266 asked for a PR to fix the Docker build, so I opened #304 with the changes that let me build an image locally to get unblocked, but it appears nobody is maintaining this repo any more. Though @dys152 solution of mounting the X socket to do GUI mode is pretty snazzy, that sportradard/aws-azure-login image is using old version of the application code. |
The recent changes to the Microsoft Authenticator app have made it difficult to authenticate when using the aws-azure-login container or without a GUI mode. This is because the MS MFA process now requires users to enter a number displayed on the screen in the authenticator app to validate. However, the terminal does not have a GUI mode and therefore unable to see the number and cannot complete the MFA process.
After a brief period, although I don't see any numbers displayed on the terminal
The profile setting for MFA is
I have since tried using Twilio Authy as my MFA app and it works fine. But however, the organization standard is MS Authenticator and therefore I would like to know if there are any workarounds for this issue.
The text was updated successfully, but these errors were encountered: