2FA or two-factor authentication with cockpit

stephdl · March 14, 2020, 10:32am

The code must be read inside freeotp, you receive nothing ???

transocean · March 14, 2020, 10:35am

After scanning i received only a field wit six - - - - - -

stephdl · March 14, 2020, 10:38am

press/click the -------

stephdl · March 14, 2020, 10:41am

confirmed it just work

use google authenticator if you prefer that anyone behind you can read all tokens (the behaviour is to display them)

transocean · March 14, 2020, 10:47am

Problem is the same with Google Authenticator. When i click the - - - - - - i received a code. This is normal. When i type this code in the field and press the button setting.test_token i received the error message in red and the the save button below is grey.

stephdl · March 14, 2020, 10:48am

ok I cannot reproduce it

what version did you use

[root@ns7loc10 ~]# rpm -qa | grep nethserver-cockpit
nethserver-cockpit-1.4.6-1.36.pr191.gfb87e36.ns7.noarch
nethserver-cockpit-lib-1.4.6-1.36.pr191.gfb87e36.ns7.noarch

transocean · March 14, 2020, 10:51am

[root@x.x.x.server ~]# rpm -qa | grep nethserver-cockpit
nethserver-cockpit-1.4.6-1.36.pr191.gfb87e36.ns7.noarch
nethserver-cockpit-lib-1.4.6-1.36.pr191.gfb87e36.ns7.noarch

stephdl · March 14, 2020, 10:53am

???

issue between keyboard and chair or real issue

:-?

You never have to use the recovery code in the verification field

transocean · March 14, 2020, 10:56am

I dont use the recovery code. I used allways the first code after scanning and click - - - - - - by hand.

stephdl · March 14, 2020, 10:57am

when you remove the status switch you remove the key, and a new QR code must be scanned

However, freeotp does not remove the key automatically, you have to remove it manually then scan again the new qr code

Alternatively you can use google authenticator on your mobile phone

transocean · March 14, 2020, 11:11am

As I wrote above, the problem also exists with the google authenticator. I will interupt the test now.

Thanks for help.

Uwe

stephdl · March 14, 2020, 11:33am

I really do not know what issue you faced…if others could test and try to reproduce the issue, I would be pleased .

Thank for testing

transocean · March 14, 2020, 12:34pm

Here is a picture of my problem for a better understanding.

stephdl · March 14, 2020, 12:48pm

could you reload the page, the key will be generated again, then remove the key in the otp client, and scan it again

This is interesting

transocean · March 14, 2020, 12:54pm

Where in OTP is the right point to delete the key. I can remove the conplete app from my eggphone, but is this the right way to delete the key?

stephdl · March 14, 2020, 12:55pm

press delete on the otp key inside the android application

stephdl · March 14, 2020, 12:56pm

could you check if your time is accorded to the time of your server ?

transocean · March 14, 2020, 12:58pm

Time is correct.

stephdl · March 14, 2020, 12:59pm

same timezone ?

time set by a ntp server ?

transocean · March 14, 2020, 1:02pm

same timezone and time set by npt and for testing switched also to manual.

Edit: Same problem with different browers. Edge and FF