Hey everybody,
first of all: I am new here :). Please forgive if this question already has been asked (I was searching for similar topics, but only found a thread about not being able to edit user attributes in the new account console).
We want to user keycloak for our organization, but we also want to enforce an OTP based 2FA for all of our users, regardless if they want to have the 2nd factor or not. We managed to set this up successfully on account creation …
… but with the new account console (which looks great BTW and is a real improvement compared to the old one :)), everybody (still) can step out of the 2FA at his/her own will.
Is there any way this can be prevented? Or would we have to change the account console itself in order to achieve this goal?
Thank you for your time and for any kind of answer,
Martin