Set OTP seed
-
Hi!
I want to use OTP with XOA and Feitian-Tokens.
This is working fine, but currently, XOA does generate the seed/security key.Is there any possibility to add OTP with a pre-defined seed or to setup OTP for a user through xo-cli with a seed?
Thank you and best wishes
Phil Stricker -
I'm not sure to get it, but leaving it to @julien-f when he's around
-
@KPS What IDP are you using, local XO or something like Google?
-
I am using OTP like Google-Auth.
The sticks are working exactly like the Google-Authenticator-App, but I want to set the seed.
What i tried (without success):
xo-cli user.set id=xxx preferences='{"otp":"JVTXXXXXXXXXXXXXXXX"}' ✖ invalid parameters property @./preferences: must be object
-
@KPS How does your team sign into Xen Orchestra, with accounts that are local to XO, or are they using some cloud account?
It sounds like you're team is using local accounts, and you're wanting to enforce MFA on those.
-
@DustinB We are using "local" XOA-accounts, but:
I was able to find the right syntax:
xo-cli user.set id=xxx-xxx-xxx preferences='json:{"otp":"JVTXXXXXXXXX"}'
I am able to set a fixed OTP