Support

Admin Tools

#14397 two-factor authentication on second device does not work

Posted in ‘Admin Tools for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
n/a
PHP version
n/a
Admin Tools version
n/a

Latest post by nicholas on Saturday, 15 December 2012 12:06 CST

Saturday, 15 December 2012 12:00 CST

freebandtech

Mandatory information about my setup:

Have I read the related troubleshooter articles above before posting (which pages?)? Yes
Have I searched the tickets before posting? Yez
Have I read the documentation before posting (which pages?)? Yes
https://www.akeebabackup.com/component/docimport/admin-tools/waf-twofactorauth.html

Joomla! version: 2.5.8
PHP version: 5.3.x
MySQL version: 5.5.x
Host: custom
Admin Tools version: 2.4.3

Description of my issue:

I have set up two-factor auth on one of my android devices and it worjs flawlessly.
Nevertheless, a second installation on a different devives yields codes which are not valid, although the account name and the key are both correct.
If this method of auth can only work with one device, than it cannot be impemented in scenarios where multiple backend users need to log in.

Saturday, 15 December 2012 12:06 CST

nicholas

The two factor authentication can be used with many devices. The limiting factor is that all devices must use the same Secret Key. Unlike what you have with, say, GMail all back-end users of a Joomla! site must share a single key. This is not considered a security issue because all of your back-end users are inherently trusted parties. Such an assumption would be invalid on, say, GMail as it's not sane to assume that all GMail users (who do not know each other or may be adversaries) can be trusted the same level of access.

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!