IBM Security Join our 16,000+ members as we work together to overcome the toughest challenges of cybersecurity. Join the Community
Hi, is it possible to detect if Kerberos was achieved with MFA or not (e.g. using DUO or PIV/CAC card)? We are using ISVA and need to honor Kerberos only if it was accompanied with DUO or PIV card MFA. If not, we'll have to prompt the user for userid/pwd followed by MFA. Is it possible to implement such detection mechanism and then follow the conditional login logic in ISVA?
Hi team, any updates or pointers on this? Trying to avoid having to do MFA twice for kerberos users - one for the desktop login and then again at ISVA application access level.