Re: FAS 2FA recovery keys?
On Tue, Sep 12, 2023 at 10:58:24AM +0100, Barry Scott wrote: > > > > On 12 Sep 2023, at 10:32, Michael J Gruber wrote: > > > > Am Di., 12. Sept. 2023 um 11:22 Uhr schrieb Barry Scott > > : > >> > >> I have been updating my FAS account security. > >> When I setup 2FA I was not offer any recovery keys. > > > > You can register multiple OTP tokens: > > https://docs.fedoraproject.org/en-US/infra/sysadmin_guide/2-factor/ > > I did notice I could setup more then one and have used pass-otp for my 2nd > 2FA method. > > > > >> In the event that I lose FreeOTP on my phone how do I recover? > > > > If you lost all of your tokens you can request a reset: > > https://fedoraproject.org/wiki/Infrastructure_Two_Factor_Auth#What_happens_if_I_lost_my_token_or_got_a_new_device? > > Good to know. > > > > > That being said, I'm in the same boat: Getting recovery keys *at the > > same time* as activating 2fa has something soothing to it ... > > Yep, and its what I have seen for every over service I setup 2FA for. If you like you could file a RFE on noggin: https://github.com/fedora-infra/noggin This may be difficult to implement though, due to the way things fit together. noggin is a application that provides the 'self service' part of things on top of IPA. IPA doesn't (I don't think) have any way to do 'recovery codes' because it's designed that admins manage the users (as in companies), so it would all need to be implemented in noggin. Anyhow, I agree it would be a nice feature to have. kevin signature.asc Description: PGP signature ___ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
Re: FAS 2FA recovery keys?
> On 12 Sep 2023, at 10:32, Michael J Gruber wrote: > > Am Di., 12. Sept. 2023 um 11:22 Uhr schrieb Barry Scott > : >> >> I have been updating my FAS account security. >> When I setup 2FA I was not offer any recovery keys. > > You can register multiple OTP tokens: > https://docs.fedoraproject.org/en-US/infra/sysadmin_guide/2-factor/ I did notice I could setup more then one and have used pass-otp for my 2nd 2FA method. > >> In the event that I lose FreeOTP on my phone how do I recover? > > If you lost all of your tokens you can request a reset: > https://fedoraproject.org/wiki/Infrastructure_Two_Factor_Auth#What_happens_if_I_lost_my_token_or_got_a_new_device? Good to know. > > That being said, I'm in the same boat: Getting recovery keys *at the > same time* as activating 2fa has something soothing to it ... Yep, and its what I have seen for every over service I setup 2FA for. Barry > Michael > ___ > devel mailing list -- devel@lists.fedoraproject.org > To unsubscribe send an email to devel-le...@lists.fedoraproject.org > Fedora Code of Conduct: > https://docs.fedoraproject.org/en-US/project/code-of-conduct/ > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org > Do not reply to spam, report it: > https://pagure.io/fedora-infrastructure/new_issue ___ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
Re: FAS 2FA recovery keys?
Am Di., 12. Sept. 2023 um 11:22 Uhr schrieb Barry Scott : > > I have been updating my FAS account security. > When I setup 2FA I was not offer any recovery keys. You can register multiple OTP tokens: https://docs.fedoraproject.org/en-US/infra/sysadmin_guide/2-factor/ > In the event that I lose FreeOTP on my phone how do I recover? If you lost all of your tokens you can request a reset: https://fedoraproject.org/wiki/Infrastructure_Two_Factor_Auth#What_happens_if_I_lost_my_token_or_got_a_new_device? That being said, I'm in the same boat: Getting recovery keys *at the same time* as activating 2fa has something soothing to it ... Michael ___ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
FAS 2FA recovery keys?
I have been updating my FAS account security. When I setup 2FA I was not offer any recovery keys. In the event that I lose FreeOTP on my phone how do I recover? Barry ___ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
