Hi team. Premium user here. Our org has setup LDAP and 2FA for enhanced security. So every access through a jump host (ProxyPass) requires us to go through LDAP authentication powered by a 2FA.
Let's say I'm trying to create a tunnel for a node 10.32.161.74. Because of the below restriction, the tunnel fails naturally because it cannot bypass this scheme
The flow is like this
- LDAP + 2FA -> generates a token with an expiry
- I've setup a ProxyJump host as X
- X only allows me to go through if it sees the token. Else rejects. This is where Core tunnel simply cannot connect.
If I have the token, core tunnel works for that duration until the token expires. Which is when I generate a new token and then access my tunnels.
Is there a way to setup LDAP based authentication amongst the plethora for security options in the Authentication settings? I'm trying to avoid adding my username / password every X hours to access my tunnels.
Thank you, team.