[keycloak-user] two factor authentication using email on trusted devices

[Snehalata Nagaje]

Hi All,


We have requirement of two factor authentication using email such as below.

When user attempts to login to system, the system should check for a cookie to confirm the device has been authorized. If the cookie is not found or is expired, the system will send an authentication email to the user's email address and ask the user to check their email which is associated with their account. When the user clicks on a designated link in the email, their account will be allowed to access system. 

The authentication will expire after a time period which needs to be configurable in through UI

Can you please help with this?

Do we have this feature implemented in place?

Thanks,
Snehalata
Disclaimer: This e-mail may contain Privileged/Confidential information and is intended
only for the individual(s) named. Any review, retransmission, dissemination or other use
of, or taking of any action in reliance upon this information by persons or entities
other than the intended recipient is prohibited. Please notify the sender, if you have
received this e-mail by mistake and delete it from your system. Information in this
message that does not relate to the official business of the company shall be understood
as neither given nor endorsed by it. E-mail transmission cannot be guaranteed to be
secure or error-free. The sender does not accept liability for any errors or omissions in
the contents of this message which arise as a result of e-mail transmission.If
verification is required please request a hard-copy version.
Visit us at http://www.harbingergroup.com/