TFA Fails for just one admin user

  • Resolved rick9004

    (@rick9004)


    4 years, 12 months ago

    Weird Situation. I had two admin users (I do not have a root named user) and I added your plugin without issues. Administrators must have 2fa as well as other users types. Been using the 2fa for a week without failures. I needed to add an admin user so I created a new user, logged in ok and checked the box to use 2fa that that user. Now that user cannot successfully login using the 2fa, it throws the error “The one-time password (TFA code) you entered was incorrect.”. Both my original users can login and use the 2fa successfully. I’ve tried this on 4 different browsers to be sure.

    So I turned off the 2fa plugin for admin users only (I have no other users) and that same user was able to login without issues. However the plugin prevents seeing the user checkbox for 2fa after one time use. Turned back on the admin users checkbox. So I went into the user meta table and set the field tfa enable to 0 and was able to login in again without 2fa. I then deleted the secret 2fa key (I copied it first) and set the enable flag to 1. NO dice, still the same one time password error. All user have totp for the type of 2fa.

    Any ideas of where to go next?

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Author David Anderson

    (@davidanderson)

    Hi,

    It sounds like you haven’t realised that the TFA codes are different for each user, and each user needs to set up their own device personally?

    David

    Thread Starter rick9004

    (@rick9004)

    No, I assumed wrong that the same web site would have the same 2fa for different users I was testing with from the same phone.

    I’ll need to check to see if my Authy will allow two different entries for the same site with different 2fa. Never done that before. Otherwise I’ll use one Authy and the other with either google or MS 2fa apps.

    Thread Starter rick9004

    (@rick9004)

    To complete this support… Yes Authy supports multiple accounts for the same site. Next is to delete the first one as I’ll no long use it.

    Thanks….

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘TFA Fails for just one admin user’ is closed to new replies.