Operational Defect Database
BugZero found this defect 1439 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
WatchGuard Technologies | kA10H000000boiiSAA
Deactivated Active Directory users bypass MFA for the AuthPoint agent for Windows
Last update date:
6/10/2020
Affected products:
No affected products provided.
Affected releases:
Any/Unknown
Fixed releases:
All
Description:
Issue
Deactivated Active Directory users can log in to a computer with the agent for Windows installed without MFA (user name and password are still required). This only happens the first time the user logs in after they are deactivated. When the user tries to log in again, they receive a Windows error message. This issue is not related to the agent for Windows and happens whether or not the agent for Windows is installed. Deactivated Active Directory users can successfully log in the first time after they are deactivated.
Workaround/Solution
No workaround exists at this time.
