Problem:
The Centrify Agent for Window MFA (Multi-Factor Authentication) fails to prompt the user for the second factor. If offline passcode is configured, the user will be requested to enter the passcode.
The verbose agent logfile will have the message:
Failed to authenticate through Centrify Identity Service. Error: System.Threading.Tasks.TaskCanceledException: A task was canceled.
Cause:
The TLS 1.0 protocol is deprecated with release 18.6 of the Centrify Identity Platform. This causes the agent to lose the ability to communicate with the tenant for MFA.
Solution:
Upgrade the Centrify Agent for Windows to release 3.4.2 or later. Please see KB-10288 for details on the impact of this change along with other recommended solutions.
Note: The Centrify Agent for Windows release 3.4.2 requires .Net 4.6.2