Ops.gitlab.net isn't an Okta application
Details
- Point of contact for this request: @plafoucriere
- If a call is needed, what is the proposed date and time of the call: No
- Additional call details (format, type of call): No
SRE Support Needed Support Request Details
https://ops.gitlab.net/ is our instance to manage GitLab's infrastructure. It is considered to be a critical part of our infrastructure and supply chain.
Yet, this instance doesn't benefit from the same level of security as our root namespaces on gitlab.com: Logging via Okta is not enforced.
It seems even possible to disable 2FA in my account (I haven't tested, didn't want to re-add my devices). Groups probably require users to have 2FA but this remains to be checked.