Skip to content
Snippets Groups Projects

tpa rfc 46 gitlab 2fa

Last edited by Antoine Beaupré 
title: TPA-RFC-46: GitLab 2FA
approval: TPA
affected users: All GitLab users but one
deadline: 2023-01-17, then 48h grace period
status: standard
discussion: https://gitlab.torproject.org/tpo/tpa/team/-/issues/40892

Summary: enforce 2FA in the TPA group in GitLab on Tuesday, 2 day grace period

Background

GitLab groups have a setting to force users in the group to use 2FA authentication. The actual setting is labeled "All users in this group must set up two-factor authentication".

It's not exactly clear what happens when a user is already a member and the setting is enabled, but it is assumed it will keep the user from accessing the group.

Proposal

Enable the "enforce 2FA" setting for the tpo/tpa group in GitLab on Tuesday January 17th, with a 48h grace period, which means that users without 2FA will not be able to access the group with privileges on Thursday January 19th.

References

Comments

    Please register or sign in to add a comment.