Striker should use idp.wikimedia.org for the log-in interface instead of direct LDAP authentication.
As far as I can tell, due to how 2fa is implemented, this is actually not blocked on T359552 - for now we can have the authentication via IDP and still use the homegrown Wikitech 2fa interface, and then simply remove that once 2fa is implemented in IDP itself.