Thu Jan 21 13:57:07 EST 2021

This item has been posted to rhic-rcf-l@lists.bnl.gov, sdcc_users-l@lists.bnl.gov, usatlas-users-l@lists.bnl.gov

Summary:
Keycloak TOTP migration to PrivacyIDEA

Duration:
01/28/21 @ 9:00 AM EST - 01/28/21 @ 10AM EST

Group Responsible:
GS (General Services)

Affected Area:
External services utilizing Keycloak SDCC MFA realm

Expected User Impact:
In the unlikely case TOTP tokens are created during this window they will be invalidated and require re-generation once the downtime is over.

Maintenance Type:
Downtime

Submitted By:
Masood Zaran, mzaran@bnl.gov

Description:
Migration of TOTP flow from Keycloak to PrivacyIDEA. Migration of existing TOTP tokens into IPA as well.