@Swindel The idea of MFA via the ADFS mechanism does sound good, although I've never tried this myself.
How does it interact with LDAPS? Is it possible at all?
Or does it need to utilise the native LogonUser of a Domain Authenticated computer?
I've only seen the MFA utilised against a RADIUS configuration, and not LDAP/AD on its own, in this particular context.
I have seen custom GINA setups to enforce an MFA token entry for 'native' AD logon, but this is not something that GeoSCADA supports (since it doesn't support the GINA plugins for the second factor) [as far as I'm aware].
... View more