Hello Proxmox Community,
I tried using TFA with andOTP and it works just fine.
But I want to use a hardware token. So I ordered one with the matching OATH specifications. running oathtool in the shell of my pve-host works just fine:
The questionmarks are not really questionmarks but are used to protect my seed
The numbers that are generated are working perfectly fine and DO match the numbers shown on the token.
Here comes the Problem:
The Input field in the TFA GUI is to short. If I try to enter my seed, I allways get a message, that the regex does not match an I cannot submit the form.
Trieing to manipulate /etc/pve/user.cfg (PAM user) does not work either.
I could not test with the pve-auth provider as I could not figure out how to inject the seed for such a user.
Is there a possibility to get my seed correctly into PVE?
Preferably via GUI, but if neccessarry I also can do it via bash.
Thank you very much in advance
Matthias
I tried using TFA with andOTP and it works just fine.
But I want to use a hardware token. So I ordered one with the matching OATH specifications. running oathtool in the shell of my pve-host works just fine:
Bash:
oathtool --totp --digits 6 -s 30 -w 2 -b 'DVA??????????????????????????TP3'
886667
677723
940529The numbers that are generated are working perfectly fine and DO match the numbers shown on the token.
Here comes the Problem:
The Input field in the TFA GUI is to short. If I try to enter my seed, I allways get a message, that the regex does not match an I cannot submit the form.
Trieing to manipulate /etc/pve/user.cfg (PAM user) does not work either.
I could not test with the pve-auth provider as I could not figure out how to inject the seed for such a user.
Is there a possibility to get my seed correctly into PVE?
Preferably via GUI, but if neccessarry I also can do it via bash.
Thank you very much in advance
Matthias
