Hi guys,

im facing a strange behaviour about freeipa OTP,

we installed freeipa 4.11 on RockyLinux 9.4 and configure all user to authenticate using OTP which is working fine except for this behaviour: when a user connect using ssh using hostname to the first client (ssh user@hostname1), freeipa correclty asks for 2FA, then once logged in, if i ssh to a second server using hostname (ssh user@hostname2) it doesnt ask me any 2FA, instead if i use the ip (ssh user@ip_of_hostname2) it asks me it.

it's a strange behaviour, shouldnt it ask always 2FA?

can u guys enlight me and help to make freeipa ask always 2fa for each ssh?

thanks

Damiano