We would like to enable Multi factor Authentication (MFA) within the Beyond Trust Endpoint Privilege Management software. The idea is if you give certain elevated rights those users now have enabled MFA for other products than smartcard such as YubiKey and SecureAuth. It would be nice to also have the ability to say how long this authorization lasts, for example 24 hours before the user must re-authenticate.
Thank you for submitting this idea. We are currently evaluating the addition of support for OAuth MFA in our messages via Power Rules. I have referred this to our Engineers to assess whether Yubikey/SecureAuth can be considered as part of the same proposal.