I’ve configured a vault server to authenticate via Okta using the api-based Okta auth method (auth/okta). It is working correctly in most cases including group/policy mapping and MFA on the CLI (via the totp= parameter). I’m having a hard time figuring out how this configuration should work for the Vault Web UI.
Attempting to log in without the MFA is failing, which I suppose is expected -
Unfortunately it’s not clear where I should be providing the Okta MFA TOTP in this situation. There’s no field for it. Is this just a limitation of auth/okta? Or am I doing something wrong?
Thank you!