MFA on operator timeout
We have MFA enabled which is working fine for operators when they log in. However, when an operator times-out and subsequently logs back in, they are not prompted for the OTP. It is also not sent by the system.
Is it possible to enable this functionality, or is this behaviour by design?
Accepted Solution
Updated: 2 May 2024 10:17 EDT
Pegasystems Inc.
IN
@andwww This Is expected behavior by the system, As per the design asking the client for the verification code for the next login when they are being inactive seems to be, Not a good practice that's the reason why this design has been implemented, Some scenario Users might set the time out to a minimal value (let's say 15 or 20 min) In such cases requesting users for the code each and every time they are being inactive is not a good practice (or) User friendly.
Thank you !
Pegasystems Inc.
IN
@andwww Can you please specify what kind of session timeout feature you are using 1. Access group ? 2. Session timer? 3. if SSO, is the session timeout configured by the IDP team? These details will help me get better understanding
SiXworks
GB
@Manojkumar_ J It's defined on the access group. Many thanks
Accepted Solution
Updated: 2 May 2024 10:17 EDT
Pegasystems Inc.
IN
@andwww This Is expected behavior by the system, As per the design asking the client for the verification code for the next login when they are being inactive seems to be, Not a good practice that's the reason why this design has been implemented, Some scenario Users might set the time out to a minimal value (let's say 15 or 20 min) In such cases requesting users for the code each and every time they are being inactive is not a good practice (or) User friendly.
Thank you !
SiXworks
GB
@Manojkumar_ J Many thanks for the response