Hi. Im running NC on a local server and would like to enforce totp authentication for remote users, but not local - is that possible?
Hi @clivey_za
You can’t enforce it based on location or subnets. But there are serval discussions going on on GitHub about this, including a patch that someone provided, which is not (yet?) implemented…
https://github.com/nextcloud/server/issues/2035
There are also strong arguments against this feature, which i mostley agree with…
https://github.com/nextcloud/server/pull/21036
What you can do though is enforcing 2FA based on groups of users, if that is of any help in your situation…
Generally, I would recommend to stay logged in on your trusted devices. If you work with Nextcloud on a daily basis you would rarely ever have to log-in again then.
1 Like