Maniphest T4274

Extend OpenConnect RADIUS Timeout to Permit 2FA Entry
Closed, ResolvedPublic
Actions

Assigned To

Authored By

	sempervictus
	Feb 27 2022, 1:41 PM

Tags

Referenced Files

None

Subscribers

Global Notifications

Description

RADIUS authentication can be handled by a variety of mechanisms,
including proxy for 2FA systems requiring user interaction with a
separate device, token acquisition, or other time-consuming action.

Given the delays required for certain 2FA implementations, a thirty
second timeout can range from onerous to untenable. Accomodate the
2FA time requirements by extending the hard-coded RADIUS time limit
from 30 seconds to 240.

This is https://github.com/vyos/vyos-1x/pull/1236 on GH

Details

Version: -
Is it a breaking change?: Unspecified (possibly destroys the router)
Issue type: Unspecified (please specify)

Related Objects

Mentioned In: rVYOSONEX257345cd152c: open-connect: T4274: extend RADIUS authentication timeout

Event Timeline

sempervictus created this task.Feb 27 2022, 1:41 PM

sempervictus created this object in space S1 VyOS Public.

pasik subscribed.Feb 27 2022, 3:57 PM

Restricted Repository Identity mentioned this in rVYOSONEX257345cd152c: open-connect: T4274: extend RADIUS authentication timeout.Feb 28 2022, 1:32 PM

Viacheslav closed this task as Resolved.Oct 13 2022, 3:26 PM

Viacheslav assigned this task to sempervictus.

Viacheslav added a project: VyOS 1.4 Sagitta.

Viacheslav moved this task from Open to Finished on the VyOS 1.4 Sagitta board.