Proxmox - PVE 8.2.4 and 2FA via MSFT Auth App

N

N0AGI

Member
Apr 6, 2021
32
2
13
DFW, Texas, USA.
n0agi.com
hi Team,
In my env, I have 3 PVE servers and two of those have current 2FA setup and using MSFT Auth App for root@pam user.

While setting up 2FA on my 3rd server, I get the following error on my MSFT Auth App (see attached image).

I am confused as to why I had not seen this err when I was setting up on my 2nd server and why this would be a problem on my 3rd server; I expect the scan QRCode would have server name or server machine ID attach to it to make it unique ?

I am lost - can someone please shed some light on what I might be missing here please ? is it the node name ? Not sure

thanks
 

Attachments

  • original-F660B1B4-76B4-41AA-A1F3-DD781AC9E2DC.jpeg
    original-F660B1B4-76B4-41AA-A1F3-DD781AC9E2DC.jpeg
    677.4 KB · Views: 8
Microsoft Authenticator overwrites existing secrets with the same identifier because they are numbnuts.

Use a different authenticator. You can also use the same secret on all three servers and only have one MFA for PVE in your authenticator.
 
  • Like
Reactions: N0AGI
Wibla said:
Microsoft Authenticator overwrites existing secrets with the same identifier because they are numbnuts.

Use a different authenticator. You can also use the same secret on all three servers and only have one MFA for PVE in your authenticator.
Click to expand...
interesting - thanks.

a side question:
outside of the usual-suspect providers including GOOG's and MSFT's auth apps, I am hoping to try another OSS yet popular app. Any suggestions ?

I was thinking about Bitwarden's auth app - since I also selfhost their OSS PWM on my server.
 
Last edited:
You must log in or register to reply here.
Top Bottom