Cyberduck Mountain Duck CLI

#10222 closed feature (fixed)

Support 2FA

Reported by: dkocher Owned by: dkocher
Priority: normal Milestone: 6.7.0
Component: s3 Version: 6.3.4
Severity: normal Keywords:
Cc: Architecture:


Amazon S3 supports 2FA for delete requests when the bucket has versioning enabled since some time – this is supported in Cyberduck and can be configured in the Info panel in File → Info (⌘-I) → S3.

A newer option in AWS allows to enable 2FA for users managed in IAM for any API operation. This can be configured using a policy that has a aws:MultiFactorAuthPresent option as documented. This feature is not fully supported in Cyberduck – you will get a permission failure trying to access the bucket – as it requires to obtain temporary access tokens.

Obtaining temporary credentials is only supported when you run Cyberduck on EC2. Refer to [Connecting with temporary access credentials (Token) from EC2. Refer to Connecting with temporary access credentials (Token) from EC2 – that is probably not what you are looking for.

Change History (2)

comment:1 Changed on May 22, 2018 at 1:12:37 PM by dkocher

  • Milestone set to 7.0
  • Owner set to dkocher
  • Status changed from new to assigned

Related to #8880.

comment:2 Changed on Sep 20, 2018 at 6:58:39 AM by dkocher

  • Milestone changed from 7.0 to 6.7.0
  • Resolution set to fixed
  • Status changed from assigned to closed
Note: See TracTickets for help on using tickets.