We’re using GitHub Enterpise Cloud, with Okta for SSO.
I set up Git for Windows to use a Personal Access Token with SSO Enabled, which ran thru Okta to authenticate the token, which is all working fine.
This PAT now grants access to our repos on my machine, without any future MFA needed, correct?
Is there any expiration of SSO on a token? 2 weeks?
I’m assuming it’s squirreled away in a very safe space, but if someone where to get a hold of my machine or the PAT, they would not be forced thru MFA in any way??
Some systems offer location based MFA, so that if I work from Florida, but all of a sudden token is used in Utah, it would trigger MFA. I’m assuming there is no element of security like this?
Obviously if I know the PAT or my computer was compromised I would just regenerate the tokens.
Can anyone shed light on my concerns? However valid or invalid they may be.