Forum Discussion
Cannot get PfAuthUser to work on on-premise Multi-Factor Authentication Server
I can use the MFA fine through RADIUS, and the User Portal also works fine.
Calls like GetUserSettings_3 also work fine.
But when I try to use PfAuthUser_5 (or any other version), I always get:
{
'PfAuthUser_5Result': False,
'callResult': {
'Code': 149,
'Description': 'Direct SDK Not Allowed'
},
'authenticationRequestId': '284960B22FD7A0AEEEC89AC470B6BAF0',
'error': {
'Code': 12,
'Description': 'Multi-Factor Authentication denied.'
}
}A call to CombinedAuthUser_4 would give me:
{
'CombinedAuthUser_4Result': False,
'primaryAuthSucceeded': True,
'pfAuthSucceeded': False,
'callResult': {
'Code': 149,
'Description': 'Direct SDK Not Allowed'
},
'authenticationRequestId': 'F695AF55DC607EB35E7D0EC516EB7AA3',
'error': {
'Code': 12,
'Description': 'Multi-Factor Authentication denied.'
}
}Can anyone tell me what I need to do to get rid of this "Direct SDK Not Allowed" error?
I just found out I can use "userportal" instead of "pfsdk" as the initiatingAuthenticationType and then it works.
I'm going to leave this question open for a few days in case someone can tell me if this is a good solution, or if there is something I can do to make it work with pfsdk.
Just to clarify, I only found out about the "userportal" type because of the improved log files after I upgraded MFA server to the latest version.
The documentation only ever makes mention of the "pfsdk" type, and I have no idea whether or not there are any other types, or what the types actually do...
1 Reply
I just found out I can use "userportal" instead of "pfsdk" as the initiatingAuthenticationType and then it works.
I'm going to leave this question open for a few days in case someone can tell me if this is a good solution, or if there is something I can do to make it work with pfsdk.
Just to clarify, I only found out about the "userportal" type because of the improved log files after I upgraded MFA server to the latest version.
The documentation only ever makes mention of the "pfsdk" type, and I have no idea whether or not there are any other types, or what the types actually do...