Hi there, This is the 389-users list, not freeipa-users, so probably not the right list to ask. Regardless, if you are trying to configure your setup so that only two of your five freeipa servers require 2FA, that's probably not the right approach ... it will always be "all" or "nothing" as I'm aware due to how it's implemented - and for good reason. Hope that helps, > On 13 May 2020, at 18:32, Dhinakaran M <dinakar16.rhce@xxxxxxxxx> wrote: > > As per below scenario trying to enable 2FA but no luck , please let me know if any one faced this kind of issue and how it was resolved > > I'm trying to enable 2FA authentication only in 2 hosts out-of 5 hosts > > test case 1 ) I have enabled 2FA in global configuration of FREEIPA but is working on all 5hosts > test case 2) Disabled 2FA in Global configuration of freeipa and enabled OTP indicator only 2 hosts but OTP mechanism doesn't working > > https://www.freeipa.org/page/V4/Authentication_Indicators > _______________________________________________ > 389-users mailing list -- 389-users@xxxxxxxxxxxxxxxxxxxxxxx > To unsubscribe send an email to 389-users-leave@xxxxxxxxxxxxxxxxxxxxxxx > Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: https://lists.fedoraproject.org/archives/list/389-users@xxxxxxxxxxxxxxxxxxxxxxx — Sincerely, William Brown Senior Software Engineer, 389 Directory Server SUSE Labs _______________________________________________ 389-users mailing list -- 389-users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to 389-users-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/389-users@xxxxxxxxxxxxxxxxxxxxxxx
