I may be confused but the require tfa option for a Realm seems to be useless. If I turn it on before all preexisting users have set up tfa they can't login and don't get prompted to setup tfa. I thought maybe it would only prompt users to setup their tfa that were created after it was set but that doesn't work either.
So once every user has enabled tfa I can require it on the Realm but I will have to disable that requirement if I create a new user until after they have set up their TFA.
Seems like an option to require a new user to setup their tfa on first connect would be really useful, also be nice if a new user could be required to change their password on first connect.
Otherwise I am really happy with Proxmox VE coming from ESXi / VMWare.
So once every user has enabled tfa I can require it on the Realm but I will have to disable that requirement if I create a new user until after they have set up their TFA.
Seems like an option to require a new user to setup their tfa on first connect would be really useful, also be nice if a new user could be required to change their password on first connect.
Otherwise I am really happy with Proxmox VE coming from ESXi / VMWare.