Uploaded image for project: 'Runtime'
  1. Runtime
  2. RUNTIME-4296

MFA for admin population is broken due to shared MFA database between BO and FO

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Critical Critical
    • 4.9.6, 4.10.0
    • 4.9.1
    • None
    • None
    • 4.10 M4

      Context of issue

      The MFA database is shared between BO and FO for all users, including the admin population.

      However, the encryption keys used for this shared database are not shared for the admin population.
      As a result, the first environment (BO or FO) that creates a login uses its own encryption key, and the other environment cannot read the key if the same login exists.

      Fix required

      The MFA for the admin population must not use the shared MFA database. It should use the internal MFA database instead.

      Sharing MFA encryption keys is problematic, as each admin environment needs to be independent.

            cbayle Caroline Bayle
            jhawken James Hawken
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated: