Core → Auth → Agent → TwoFactor

AuthTwoFactorModule

Defines the two-factor module to authenticate agents.

This setting is not active by default.

Default value:

--- Kernel::System::Auth::TwoFactor::GoogleAuthenticator

AuthTwoFactorModule::AllowEmptySecret

Defines if agents should be allowed to login if they have no shared secret stored in their preferences and therefore are not using two-factor authentication.

Default value:

--- '1'

AuthTwoFactorModule::AllowPreviousToken

Defines if the previously valid token should be accepted for authentication. This is slightly less secure but gives users 30 seconds more time to enter their one-time password.

Default value:

--- '1'

AuthTwoFactorModule::SecretPreferencesKey

Defines the agent preferences key where the shared secret key is stored.

This setting can not be deactivated.

Default value:

--- UserGoogleAuthenticatorSecretKey