Il giorno mer 25 feb 2026 alle ore 04:10 Bruce Benson via automotive-sig <automotive-sig@lists.centos.org> ha scritto:

OK everyone there seems to be some confusion regarding the mandate for 2FA in gitlab.  I logged into gitlab and it told me I had to enable 2FA for my account.  My account is backed by RH SAML, which uses 2FA.  This is why I indicated prior that I have been using 2FA on gitlab for some time now...because RH corp policies already make this happen.  This is why RH SAML exists.  We need to undo this before the 27th before people who have been diligently doing their security hygene already are locked out.

Hi, let me try to clarify. You can login to GitLab with user and password and the request is to ensure 2FA is enabled at GitLab level to secure your GitLab account. The CentOS team is also requiring authentication through CentOS Identity Provider to grant privileges on CentOS infrastructure related repositories and Red Hat is requiring authentication through Red Hat Identity Provider  to rgant privileges on Red Hat infrastructure.

Both the identity providers have their own 2FA system as well.

Yes, it's annoying having to use 2FA 3 times on some repositories, but they are 3 different accounts in 3 different systems and yeah, we need to deal with that. I hope this clarifies.

--

Sandro Bonazzola

MANAGER, ENGINEERING

Red Hat In-Vehicle Operating System

Red Hat

Red Hat respects your work life balance. Therefore there is no need to answer this email out of your office hours.

_______________________________________________
automotive-sig mailing list -- automotive-sig@lists.centos.org
To unsubscribe send an email to automotive-sig-leave@lists.centos.org