Multi Factor Authentication

klogg · August 14, 2019, 6:39pm

I use 2FA (which I am presume is the same as Mutli Factor Authentication?) a lot elsewhere. I don’t need any snide comments, but I use the Microsoft Authenticator App to facilitate this, I actually believe that Microsoft are more benign than Google whose actual entire reason for existence is to find out and exploit as much as they can about me as possible. But anyway…

I want to use 2FA/MFA for HA too but am finding the docs slightly underwhelming in their explanation as to how it will work. I’m guessing it’ll be no different from anything else but I am not filled with enough confidence to press that ‘ENABLE’ button! Will it, for example work with the MS Authenticator app?

And what is the ‘totp’?

Also, as an aside, wouldn’t be a good idea to have a link to the docs (once they are made more accessible just like there is for other functions on this page?)

silvrr · August 14, 2019, 8:23pm

Here are the docs you are looking for.

Time based one time password. When setting it up, you share a code (possibly done scanning a QR code) which is combined with some fancy math and the current time. Both your phone and the HA server now know this code and the time and can generate the same six digit code and authenticate based on it.

It should. Their docs say they support TOTP.

To be safe, have samba setup and active when you activate it. If it fails for some reason you can regain access through deleting select files.