2fa

Hello everyone ! I have configured a 2-node cluster with QDevice working properly. Now I reached the moment when I have to set up the HA but I am encountering some obstacles. Here are the configurations I have done till now : ZFS local storage (I am using the created one from the proxmox and...

Hello, i was wondering why only can choose Yubico and OATH/TOTP. I would like to enforce that all users are required to configure webauthn. Am i missing something, or is that option no available? Thank for your help. Kind regards schaurian

Ich habe aktuell folgendes Phänomen, ich habe eine Nutzerauthtentifizierung per LDAP eingerichtet was auch problemlos funktioniert. Nun wollte ich den Login weiter absichern und 2FA aktivieren was in erster Linie auch funktionierte .. also im Endeffekt 2FA angelegt über "totp" und den dann im...

Hey everone! So I had 2FA enabled for my root@pam user and wanted to add a new node to an existing cluster. Last time I had to do that (a couple of minor versions ago, if I recall correctly) I had to remove 2FA, then re-create it after the node was added and set up. So I am now on Proxmox...

Hi all! I have a domain pointing to my server, with nginx reverse proxy, cloudfare and SSL. All is working well, what I want is to use 2FA only outside my home and not on lan. Is there a way to do this? I´m not able to install a VPN on my job computer, so I need to expose the server to the web...

Guten Morgen liebe Community, seit einigen Tagen ist auf meinem PBS kein Login mehr möglich. Über den Benutzernamen und das Passwort komme ich noch hinaus, die Eingabe vom zweiten Faktor klappt jedoch nicht mehr. Gibt es die Möglichkeit die 2FA Option für den Benutzer root(pam) zu deaktiveren...

Hello Everyone, I was trying to disable my 2FA and there was a check box to enable and I checked it off. when I tried to log in again it still asks me for the TOTP code But I am unable to write anything. So I am locked out of the Web UI but I still have my SSH connection working. I found a...

Hi everyone, It's my first post, so I'm not sure I was supposed to post it here, but anyways, it could help So I tried to add new features to my proxmox recently, especially 2FA It works like a charm, I could use my Google authenticator for login, very cool ! But finally i decided to remove...

Hi Guys, I'm quite new to proxmox, i have some virtual machines and everything is fine so far, now i wanted to implement 2FA in order to make it a little safer and because i was curious. Unfortunately, i can't activate 2FA / TFA for a pve user, it's available for pam though. I'd appreciate...

Ich würde gerne für meinen root user eine 2FA einrichten aber leider wird der qr code nicht erkannt. Jeder andere QR-Code funktioniert nur der nicht. Hat jemand eine Ahnung woran das liegen könnte. Danke im Voraus.

Hi, I enabled 2FA in web admin panel for root user and worked as expected. But now I've disabled 2FA (unchecked TOTP Enable option in user options) and cannot access the web admin, the endpoint API call returns a 401 error. I can still access through SSH. I've restarted the server, and also...

Hello! First os all, i'm a total newbie here and with proxmox. I just built a PC and wanted to try proxmox. So if i'm selecting my node and selecting >_Shell, or if i go to my settings and choosing Two Factor Authentication, i can see something, but i think it is not what i should see. Please...

Hello, Is it possible (if yes, how to do so) to configure several u2f devices for 1 user in proxmox? Thank you Best regards

After upgrading to 5.4-3 TFA [2FA] seems to be completely broken ... Both Yubico and OATH methods now spit out an authentication error in GUI Interestingly the log shows that the user has been authenticated correctly ?? It all works fine in 5.3-11 Tested on 4 servers in total - exactly...

Starting on December 10th, 2018, support for YubiCloud v1 protocol, plain-text requests and old TLS protocols & ciphers will be deprecated. https://upgrade.yubico.com/getapikey/ https://status.yubico.com/2018/11/26/deprecating-yubicloud-v1-protocol-plain-text-requests-and-old-tls-versions/...

Hi, I've written a detailed How To for setting up OATH (TOTP) 2FA in Proxmox VE: https://pve.proxmox.com/wiki/OATH(TOTP)_Authentication Any feedback is welcome.

I have enabled OATH for Linux PAM authentication without adding a secret to my admin user. After I found out i locked myself out of the web UI, I added a secret (generated by oathkeygen) to my admin user in the following file: /etc/pve/user.cfg I have checked the date and time on both server...