Support

Admin Tools

Downloads Compatibility Requirements

#15104 Two Factor Authenticaton Failure

Posted in ‘Admin Tools for Joomla! 4 & 5’

This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version

n/a

PHP version

n/a

Admin Tools version

n/a

Latest post by nicholas on Thursday, 21 February 2013 08:43 CST

Thursday, 21 February 2013 07:40 CST

user72979

Mandatory information about my setup:

Have I read the related troubleshooter articles above before posting (which pages?)? Yes
Have I searched the tickets before posting? Yes
Have I read the documentation before posting (which pages?)? Yes
Joomla! version: (unknown) 2.5.9
PHP version: (unknown) 5.3.21
MySQL version: (unknown) 5.5.27-cll
Host: (optional, but it helps us help you) www.logiko.in
Admin Tools version: (unknown) : latest. downloaded today itself

Description of my issue: Two factor authentication is enabled but I am able to login using valid username and password minus security code.

I thought security code should be mandotory and should not allow login even if I provide valid username and password.

Hope you can help. My site got hacked recently and I dont want repeat of it.

Regards,

Asim

Thursday, 21 February 2013 08:43 CST

nicholas

Hello Asim,

If your IP address is in the administrator IP whitelist or any of the "allowed IP" fields in the Configure WAF page you get a "free pass". This means that no security checks (including two factor authentication) is taken into account. Try logging in from a different computer, connected to the Internet with a different IP address and you'll see what I mean.

Nicholas K. Dionysopoulos

Lead Developer and Director

🇬🇷Greek: native 🇬🇧English: excellent 🇫🇷French: basic • 🕐 My time zone is Europe / Athens
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!