Re: FAS 2FA recovery keys?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Tue, Sep 12, 2023 at 10:58:24AM +0100, Barry Scott wrote:
> 
> 
> > On 12 Sep 2023, at 10:32, Michael J Gruber <mjg@xxxxxxxxxxxxxxxxx> wrote:
> > 
> > Am Di., 12. Sept. 2023 um 11:22 Uhr schrieb Barry Scott
> > <barry@xxxxxxxxxxxxxxxx>:
> >> 
> >> I have been updating my FAS account security.
> >> When I setup 2FA I was not offer any recovery keys.
> > 
> > You can register multiple OTP tokens:
> > https://docs.fedoraproject.org/en-US/infra/sysadmin_guide/2-factor/
> 
> I did notice I could setup more then one and have used pass-otp for my 2nd 2FA method.
> 
> > 
> >> In the event that I lose FreeOTP on my phone how do I recover?
> > 
> > If you lost all of your tokens you can request a reset:
> > https://fedoraproject.org/wiki/Infrastructure_Two_Factor_Auth#What_happens_if_I_lost_my_token_or_got_a_new_device?
> 
> Good to know.
> 
> > 
> > That being said, I'm in the same boat: Getting recovery keys *at the
> > same time* as activating 2fa has something soothing to it ...
> 
> Yep, and its what I have seen for every over service I setup 2FA for.

If you like you could file a RFE on noggin:
https://github.com/fedora-infra/noggin

This may be difficult to implement though, due to the way things fit
together. noggin is a application that provides the 'self service' part
of things on top of IPA. IPA doesn't (I don't think) have any way to do
'recovery codes' because it's designed that admins manage the users (as
in companies), so it would all need to be implemented in noggin. 

Anyhow, I agree it would be a nice feature to have.

kevin

Attachment: signature.asc
Description: PGP signature

_______________________________________________
devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Fedora Announce]     [Fedora Users]     [Fedora Kernel]     [Fedora Testing]     [Fedora Formulas]     [Fedora PHP Devel]     [Kernel Development]     [Fedora Legacy]     [Fedora Maintainers]     [Fedora Desktop]     [PAM]     [Red Hat Development]     [Gimp]     [Yosemite News]

  Powered by Linux