Two factor authentication for crx

Avatar

jay1122

23-09-2020

Hi Team,

  We are trying to implement MFA for AEM and referred this blog. 

However we are not sure how this can be done for crx explorer as well. 

 

http://localhost:4502/crx/explorer/index.jsp

 

Please can someone suggest any pointers?

 

Regards,

Jay 

Accepted Solutions (1)

Accepted Solutions (1)

Avatar

Jineet_Vora

24-09-2020

Hello @jay1122,

Considering it is CRX Explorer where limited access (only admins) is required, what's the use case which requires you to set up MFA on CRX level? Generally MFA is for business users on AEM welcome page where they do not have access to CRX at all.

 

There should always be a back door entry. If anything goes wrong in MFA authentication how would admins be able to login to AEM CRX? Also, changing core login mechanism is highly risky.

Jineet

Answers (2)

Answers (2)

Avatar

Jörg_Hoh

Employee

24-09-2020

Ah. the good old CRX Explorer ... I don't think that this is possible, because it solely relies purely on JCR authentication and does not use Sling.

Avatar

Nikhil-Kumar

MVP

24-09-2020

@jay1122 

For using MFA for crx/explorer you might need to touch the OOTB functionality as @Jineet_Vora  suggested which is not recommended or risky. 

@Jörg_Hoh @vanegi  Can you provide your views ?

Thanks,
Nikhil Kumar