You are viewing limited content. For full access, please sign in.

Question

Question

Enabling MFA for LFDS Users-Get Username/PW incorrect when testing with Web Client

Laserfiche Directory Server Version 10 Administration Security
Updated March 21, 2022
asked on March 17, 2022

Hello, 

I am testing MFA for a LFDS User and regardless if I set:

"MFA to Inherited for the user and turn on MFA inherited behavior for Laserfiche User" from the LFDS setttings

or 

"Set MFA to Required for the user and leave the MFA inherited behavior for Laserfiche User off"

User gets Username/PW incorrect when testing the login with the Web Client.

When I look in Directory Server->Server->Operational logs I see the following MFA error:

Error of type 'Laserfiche.LicenseManager.InvalidMfaConfigurationException' while trying to issue a token.  Laserfiche.LicenseManager.InvalidMfaConfigurationException: Exception of type 'Laserfiche.LicenseManager.InvalidMfaConfigurationException' was thrown.

The user is a LFDS user, not Windows Account.

If I set MFA back to disabled, the user is able to log into the Web Client without issue.

Thought I would check here 1st before opening a support case.

Appreciate the feedback if anyone has some.

Jeff Curtis

 

0 0

Replies

replied on March 18, 2022

Hi Jeff,

Can you provide a video of the behavior, starting with the user not having MFA enabled, turning it on, and configuring it / logging in for the first time? The error message you're seeing in the logs will appear when MFA is enabled for a user but not configured yet.

0 0
View 2 previous replies
replied on March 18, 2022

Hey Chase,

Thanks for the reply.

Sorry hit marked as answered by accident.

Can I email you the Video, as this is a hosted customer and I am not sure they want me to put their information up on Answers.

I can send it to your Laserfiche Support email, if that works best for you.

Thanks,

Jeff

0 0
replied on March 21, 2022

You can go ahead and open a support case for this and mention that I asked for a video, I'll be able to take a look from there!

0 0
replied on March 21, 2022

Thanks Chase

LF Case Number is 223240

Jeff Curtis

0 0
replied on March 21, 2022

Ah I see, it looks like you are using LFS authentication for Web Client and have not enabled LFDS authentication. You will run into problems here because MFA can only be configured and used via STS, which is not used unless LFDS authentication is enabled.

0 0
replied on March 21, 2022

You would set this up on the configuration page for web client, host/laserfiche/configuration/configuration.aspx. In the Services section, under General Services.

1 0
You are not allowed to follow up in this post.

Sign in to reply to this post.

Details
Related Posts
Loading ...