Channels
#general
Title
g
gray-school-37527
07/28/2023, 10:02 PMIs there support in the pulumi web portal for 2FA?
w
white-balloon-205
07/29/2023, 2:50 AM
For email login, not currently. But if you use GitHub login or SAML login you can require 2FA via those identity providers.
g
gray-school-37527
07/29/2023, 3:25 AMI was trying to use bitbucket membership requirements, but it doesn't seem to actually use bitbucket to login
w
white-balloon-205
07/30/2023, 1:59 AM
Yeah - the "bitbucket" login is via Atlassian identity, not BitBucket specifically. If you have https://support.atlassian.com/security-and-access-policies/docs/enforce-two-step-verification/ configured on your Atlassian account then access to Pulumi should be gated through that 2FA requirement.
g
gray-school-37527
07/31/2023, 9:24 PM@white-balloon-205 It seems like that simply enforces that they are members, not that they actually authenticate via atlassian
e.g. I can still log into pulumi using my pulumi username / password even though it requires bitbucket membership
Is that correct?
Debating if we want to just migrate to a S3 backend to enforce 2FA to the data. It seems like that's the only option?