Hey, hi! I’m new here, so I’m studying Kolide Fleet now. I would like to understand is it possible to add 2FA to authorization in Fleet Web GUI and is there any way to separate the GUI port and the port for receiving the results of osquery requests to reduce security risks? Maybe you can give me some usefull links

Fleet supports SAML SSO, and most identity providers you would use support 2FA. If you want to block access to the admin UI, you should put a reverse proxy in front of fleet and filter out the

/api/v1/kolide/*

API endpoints

Thanks!