Enable optional two-factor authentication for OTRS
Open, HighPublic

Tokens
"The World Burns" token, awarded by Steinsplitter."Like" token, awarded by Thibaut120094."Like" token, awarded by Scoopfinder.
Assigned To
None
Authored By
Ireas, Dec 22 2015

Description

Once OTRS 5 is deployed (T74109), we should consider enabling optional two-factor authentication for OTRS agents (2FA, see the release notes for OTRS 5 Beta 2, What’s New, section 3). It does not seem to be difficult to enable it, and it would allow agents who are familiar with 2FA to increase the security of their accounts.

The background for this request is that the WMF Security Team will be working on two-factor authentication for Wikimedia projects in the next quarter (cf. their schedule on meta). OTRS access should be protected with reasonable security mechanisms too.

Ireas created this task.Dec 22 2015, 5:14 PM
Ireas updated the task description. (Show Details)
Ireas raised the priority of this task from to Needs Triage.
Ireas added a project: OTRS.
Ireas added a subscriber: Ireas.
Restricted Application added subscribers: StudiesWorld, Matthewrbowker, Rjd0060 and 2 others. · View Herald TranscriptDec 22 2015, 5:14 PM
Krenair added a subscriber: Krenair.

In my opinion, access to OTRS is even more sensitive than access to MediaWiki accounts.

Uhh... That depends on which MediaWiki accounts.

Ireas updated the task description. (Show Details)Dec 22 2015, 5:31 PM
Ireas set Security to None.
Ireas added a comment.Dec 22 2015, 5:34 PM

In my opinion, access to OTRS is even more sensitive than access to MediaWiki accounts.

Uhh... That depends on which MediaWiki accounts.

You are right. I was only considering the private information available to most users / agents. I removed that sentence from the task description.

Steinsplitter moved this task from Incoming to Backlog on the OTRS board.Jan 20 2016, 5:19 PM
Restricted Application added a subscriber: TerraCodes. · View Herald TranscriptNov 12 2016, 5:11 PM
Thibaut120094 triaged this task as High priority.Nov 12 2016, 5:11 PM
revi added a subscriber: revi.Nov 12 2016, 5:11 PM
FDMS added a subscriber: FDMS.Nov 12 2016, 5:13 PM
Scoopfinder added a subscriber: Scoopfinder.

Note: 2FA is now available for admin on wikimedia wikis and on OTRS Wiki. Likely this should be priority as well.

DatGuy added a subscriber: DatGuy.Nov 13 2016, 12:17 PM
DC added a subscriber: DC.Sat, Jan 20, 2:22 PM