We have a TM server with Two Factor Authentication ON for /manager.
We want to use TM 5.0.x's SDK to deploy services via Ant builds. What's the best practice to leverage Ant based deployments on this TM server?
Our test server doesn't have 2FA on so we use a system account on that TM to deploy. This allows us to use that TM account as part of our automated builds. But the stage TM instance has 2FA switched ON and we are looking at what's a Avoka suggested best practice to use Ant based deployments.
Hey Parth, did you resolve this? If so, please share.
No we haven't resolved this yet. I'm hoping that Transact team can guide us.
Options I can think of :
1. There is a way to have a system account that can do this deployment via API only. No /manager access is required for this account;
2. We'll have to force the TM to go in less secure mode by turning off 2FA for deployments.
I tested this and can confirm that the 2FA is bypassed when deploying through API. We found that proper processes and separate role with deployment permission need to be created to make sure that this doesn't get misused.
Here is the suggested best practice -
Hey Parth, I believe that the 2FA is bypassed when calling the API layer. Give it a try and let us know how you go.
Have you tried this yet Parth? I'm interested to hear the outcome.