2 Factor authentication

For one of our applications, we have configured two different SAML providers for internal vs. external users. When they go to Appian they are first prompted to indicate whether they are internal or external, then if they choose external they are directed to a third-party authentication service that handles the 2FA. Once authenticated they are automatically returned to Appian with the appropriate authentication. If they indicate they are internal then they are authenticated through SSO and do not require 2FA. Perhaps you could configure a similar setup.

For one of our applications, we have configured two different SAML providers for internal vs. external users. When they go to Appian they are first prompted to indicate whether they are internal or external, then if they choose external they are directed to a third-party authentication service that handles the 2FA. Once authenticated they are automatically returned to Appian with the appropriate authentication. If they indicate they are internal then they are authenticated through SSO and do not require 2FA. Perhaps you could configure a similar setup.

Thanks for the pointer i can get the duo to work as second IDP with SAML but i am looking to use google authenticator how do we incorporate that into SAML.

Were you able to use google authenticator?

We didn't use google authenticator but we used ADFS, DUO, PING and OKTA successfully.