MFA public ip exclusion list

Discussion in 'Parallels Remote Application Server Feature Suggestions' started by SIMA Srl, Feb 21, 2020.

Tags:
  1. SIMA Srl

    SIMA Srl Bit poster

    Messages:
    5
    The exclusion list work only for client private ip
    We have hundreds of customer connecting on the same RAS so is good for us to have the public ip exclusion.
     
    Karsayor, DavidJ75, BrieucB and 4 others like this.
  2. Karsayor

    Karsayor Bit poster

    Messages:
    1
    I really second this. As a Service Provider, the inability to filter on client public IP poses a security threat to us as we need to disable 2FA for known public IP addresses of our customers, not for their private range. If we create an exclusion for the range 192.168.1.0/24 because a customer has this on his subnet, it would allow anyone to bypass the MFA by just having the same subnet range on their computer..
     

Share This Page