Version 8.2
Is there a way to use SailPoint as a Multi factor authentication so that it also syncs with Active Directory and the Azure MFA? Take for example if a user needs to login to their Azure/AD account, SailPoint can do the MFA and it can also sync with AD and Azure. This way if, possible, can be use for MFA resets as well.
IIQ Supports RSA and DUO as OOTB. You can have customized MFA as well.
For more info, check the MFA doc here
After login successfully, perhaps you can sync MFA related attributes to Azure AD to not ask for MFA again.
The best option is to enable SAML authentication. The IdP (Azure AD) would handle the MFA part and after successful authentication a session is set-up.
It might be needed to enforce MFA authentication for the SP-initiated authentication flow.
Please take a look at: IdentityIQ SAML support guide
– Remold
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.