Project

General

Profile

Actions
Copy link

tickets #158359

closed

Kanidm login asks for TOTP instead of passphrase

Added by crameleon 7 months ago. Updated 7 months ago.

Status:
Resolved
Priority:
Normal
Assignee:
firstyear
Category:
FreeIPA/Kanidm
Target version:
-
Start date:
2024-04-01
Due date:
% Done:

0%

Estimated time:

Description

Hi,

user "bmwiedemann" can not log in https://idm.i.o.o, upon entering their username, the UI asks for a TOTP token instead of for a passphrase.
We never used TOTP with FreeIPA (I did not even know that was a thing), and comparing the kanidm person get output with mine does not reveal any obvious differences.
I tried selecting "passphrase" in the authentication methods of their user in the FreeIPA UI, but that did not make a difference.

Could you check and if possible remove this token?

Thanks,
Georg

Files

Screenshot 2024-04-02 at 09.39.33.png (205 KB) Screenshot 2024-04-02 at 09.39.33.png firstyear, 2024-04-01 23:40
Actions
Copy link
 #1

Updated by firstyear 7 months ago

See attached screenshot. They do have an OTP associated with their account, as do 4 others. Kanidm is correctly prompting for it as a result.

Actions
Copy link
 #2

Updated by crameleon 7 months ago

  • Status changed from New to Resolved
  • Private changed from Yes to No

Thank you! I did not spot this interface in FreeIPA before. Will keep it in mind for next time.

Actions
Copy link

Also available in: Atom PDF