Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

2-factor authentication not working after update #10125

Closed
cyberduck opened this issue Nov 3, 2017 · 11 comments
Closed

2-factor authentication not working after update #10125

cyberduck opened this issue Nov 3, 2017 · 11 comments
Assignees
Labels
bug fixed high priority sftp SFTP Protocol Implementation
Milestone

Comments

@cyberduck
Copy link
Collaborator

5141486 created the issue

We are using keyboard interactive 2-factor authentication with Cyberduck and SFTP. We had problems before CD-2911. This was fixed and was working with 6.1.0 (25371). Latest version 6.2.11 (26765) it has stopped working.

-- Jonas

@cyberduck
Copy link
Collaborator Author

@dkocher commented

In 4e8a4fc. Please update to the latest snapshot build available.

@cyberduck
Copy link
Collaborator Author

5141486 commented

Version 6.3.1 (27114) our OTP-authentication does not work in this version either. Our system is based on SSH keyboard-interactive prompts from a pam_radius module asking for an OTP-prompt.

-- Jonas

@cyberduck
Copy link
Collaborator Author

@dkocher commented

Can you confirm that your server does use no password authentication but only keyboard-interactive for both password and OTP.

@cyberduck
Copy link
Collaborator Author

5141486 commented

I ran ssh -v to our server, which gave the following log:

debug1: Next authentication method: keyboard-interactive
Password:
Enter your Pocket Pass OTP: 471410
debug1: Authentication succeeded (keyboard-interactive).

This should indicate that keyboard-interactive is used for both.

Thanks in advance!

Jonas Lindemann

@cyberduck
Copy link
Collaborator Author

@dkocher commented

~~ Thanks! That is helpful. We have a regular expression match that we default to the user password per default for .*[pP]assword:\s?\z which is why the password is sent instead of the token. ~~

@cyberduck
Copy link
Collaborator Author

@dkocher commented

Possible fix in 8288c5d. Please update to the latest snapshot build.

@cyberduck
Copy link
Collaborator Author

@dkocher commented

Please let me know if the latest build resolves the issue.

@cyberduck
Copy link
Collaborator Author

5141486 commented

Unfortunately it doesn't work. However, I get the OTP-prompt, but the login still fails and I get a repeated OTP-prompt.

-- Jonas

@cyberduck
Copy link
Collaborator Author

@dkocher commented

We have again refactored the login flow for SFTP authentication methods in 46475a8. If you could please update to the latest snapshot build 27155 available and test that would be much appreciated.

@cyberduck
Copy link
Collaborator Author

5141486 commented

This issue has returned. Confirmed with latest Cyberduck-version. 7.1 - 31395

@cyberduck
Copy link
Collaborator Author

@dkocher commented

Replying to [comment:15 jonas_lindemann]:

This issue has returned. Confirmed with latest Cyberduck-version. 7.1 - 31395
Duplicate for #10813.

@iterate-ch iterate-ch locked as resolved and limited conversation to collaborators Nov 26, 2021
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
bug fixed high priority sftp SFTP Protocol Implementation
Projects
None yet
Development

No branches or pull requests

2 participants