-
|
We were thinking about internal applications for Authentik when we had an idea for access for internal users. We have a "Standard Login Flow" for Grafana which works great. The flow has a MFA Stage enabled. Now we would like to know if and how you have disables MFA for specific users. Or is it possible to set a secure external IP Adress from which no MFA is required? If not that could be an improvement for the MFA Stage. If you had such case with your Authentik installation, what did you do? A second Application with a different flow only for that user would not work since I can add only one redirect url for Grafana and other apps. A user specific flow wouldn´t work either because I can only specify one flow per application. |
Beta Was this translation helpful? Give feedback.
Replies: 2 comments 1 reply
-
|
I know question is similar to #13706 but I´d like how you have done it in detail. Are there more options? |
Beta Was this translation helpful? Give feedback.
-
|
I worked out how to edit Stage Bindings, it was kind of similar to this documentation, but not exactly like described. You have to edit the Stage Binding within the Flow, not on the "Stages" page. |
Beta Was this translation helpful? Give feedback.
-
|
Thank you for mentioning this. I've created a PR to fix the wording in that doc. |
Beta Was this translation helpful? Give feedback.
I worked out how to edit Stage Bindings, it was kind of similar to this documentation, but not exactly like described. You have to edit the Stage Binding within the Flow, not on the "Stages" page.
https://docs.goauthentik.io/customize/policies/working_with_policies/