We let everyone login using a Saml2-account (We use simplesamlphp with a mysql backend). The second factor comes from a PrivacyIdea-server.
Where I'm based, only teachers need to provide a second factor, since they have access to student data. We distinguish teachers from students in the mysql database and filter that in simplesamlphp, so only teachers get the screen for the 2nd factor. Students are allowed in using username and password only.
The whole solution is free software (as in freedom) and open standards.
Where I'm based, only teachers need to provide a second factor, since they have access to student data. We distinguish teachers from students in the mysql database and filter that in simplesamlphp, so only teachers get the screen for the 2nd factor. Students are allowed in using username and password only.
The whole solution is free software (as in freedom) and open standards.