Home
Help
Search
Login
Register
OPNsense Forum
»
English Forums
»
General Discussion
»
Admin TOTP authentication device lost, how to get access?
« previous
next »
Print
Pages: [
1
]
Author
Topic: Admin TOTP authentication device lost, how to get access? (Read 1930 times)
vico1959
Newbie
Posts: 44
Karma: 0
Admin TOTP authentication device lost, how to get access?
«
on:
December 15, 2021, 12:33:21 am »
Hi folks,
Sorry if this has been answered before but I could not find a thread in my searching. This has not happened yet but I am asking in advance in case it does. I am using TOTP for admin GUI access. The thought has occurred to me that if I were to lose my authenticating device or access to it or something were to happen to me, how could anyone access the firewall GUI? I haven't seen any other backup authentication options such as email, etc. Would it then have to be accessed via console/ssh to resolve the issue? Or perhaps there is something else I'm not thinking of that would help. Forgive me if it is something simple that I am overlooking.
Logged
fabian
Hero Member
Posts: 2769
Karma: 200
OPNsense Contributor (Language, VPN, Proxy, etc.)
Re: Admin TOTP authentication device lost, how to get access?
«
Reply #1 on:
December 15, 2021, 12:27:16 pm »
After all, it is an QR code. Make a backup of it in a safe place or use an access mechanism that does not depend on it such as SSH with private key. The TOTP seed is stored in the configuration file.
Also if you backup to nextcloud or anywhere else, you could extract the seed from there.
Logged
vico1959
Newbie
Posts: 44
Karma: 0
Re: Admin TOTP authentication device lost, how to get access?
«
Reply #2 on:
December 17, 2021, 10:13:26 pm »
That is actually not a bad idea to make a physical printout of the QR code and file that somewhere. That seems the simplest of all. Great thoughts. Thank you for that. Sometimes it is too easy to overlook the obvious.
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
English Forums
»
General Discussion
»
Admin TOTP authentication device lost, how to get access?