MeshCentralRouter icon indicating copy to clipboard operation
MeshCentralRouter copied to clipboard
verified publisher icon Ylianst

2FA FIDO Authentication for Router

Open deajan opened this issue 2 years ago • 2 comments

Describe the bug

Hello, I've setup 2FA FIDO2/WebAuthn on Meshcentral v1.1.4 using a Yubikey (without the yubikey id/secret part since we're using FIDO2 instead of Yubi OTP which is outphased). So far everything works like a charm, except for the MeshcentralRouter (v1.8.8332) which asks for a token. Touching my Yubikey "keyboard types" a token into MeshcentralRouter, but obviously that's a OTP token, whereas a FIDO2 inquiry should have been sent by MeshCentralRouter to the OS that interacts with the hardware key.

To Reproduce Steps to reproduce the behavior:

  1. Setup FIDO2 on Meshcentral
  2. Download router
  3. Enter username and password
  4. Meshcentral Router asks for a token image

Expected behavior Instead of asking for a OTP token, meshcentral router should behave juste like the meshcentral online app.

Server Software (please complete the following information):

  • OS: AlmaLinux 9.1
  • Virtualization: KVM
  • Network: Behind a Haproxy
  • Version: v1.1.4
  • Browser: Vivaldi 58

Remote Device (please complete the following information):

  • Device: Windows 10 22H2 x64

deajan avatar Feb 06 '23 14:02 deajan

Anyone ?

deajan avatar Mar 02 '23 10:03 deajan

if you want to donate a FIDO key/money to myself then please do and i can look into it with buying one/using one! https://www.si458.co.uk/2024/01/05/donation/

si458 avatar Jun 27 '24 14:06 si458