Add new attachment

Only authorized users are allowed to upload new attachments.

List of attachments

Kind Attachment Name Size Version Date Modified Author Change note
png
otp_email.png 53.8 kB 2 05-Dec-2023 05:32 Ben Spink
png
otp_email_template.png 66.4 kB 2 05-Dec-2023 05:32 Ben Spink
jpg
otp_general.jpg 166.9 kB 1 05-Dec-2023 05:32 Ada Csaba
png
otp_sms.png 89.8 kB 2 05-Dec-2023 05:32 Ben Spink
png
otp_user_settings.png 26.0 kB 2 05-Dec-2023 05:32 Ben Spink
png
twilio.png 179.8 kB 1 05-Dec-2023 05:32 krivacsz
png
twilio2.png 77.5 kB 1 05-Dec-2023 05:32 krivacsz
png
twilio3.png 24.1 kB 2 05-Dec-2023 05:32 Ben Spink

This page (revision-50) was last changed on 17-Sep-2024 03:07 by Sandor

This page was created on 05-Dec-2023 05:32 by krivacsz

Only authorized users are allowed to rename pages.

Only authorized users are allowed to delete pages.

Difference between version and

At line 1 changed one line
OTP settings
!!Enterprise Licenses Only
OTP / MFA / 2FA settings\\
\\
This settings allows you to configure two factor authentication. Before two factor authentication will even be considered, you must set the flag "otp_validated_logins" in your prefs.XML file to true.\\
\\
!1. SMS based:
- You must have a twilio account.
Using Twilio: https://www.twilio.com/
\\
The ACCOUNT SID as username and AUTH TOKEN as password:\\
[twilio3.png]
\\
Url :
{{{
https://{otp_username}:{otp_password}@api.twilio.com/2010-04-01/Accounts/{otp_username}/Messages.json
}}}\\
\\
API post :
{{{
To={otp_to}&From={otp_from}&Body={otp_token}
}}}\\
\\
Provide your twilio phone number. Checking the "Validated Logins?" will enable to use otp in user login.\\
\\
[otp_sms.png]\\
\\
The config will be used only for users which have a phone number and the "Two factor SMS authentication" flag enabled in the User Manager.\\
\\
[otp_user_settings.png]\\
\\
!2. Email based:
Email usage requires a SMTP server configured in the Preferences, General Settings area.\\
\\
Url : SMTP \\
(Just those 4 uppercase letters, nothing else.)
\\
[otp_email.png]\\
\\
The config will be used only for users which have an email and the "Two factor OTP/SMS authentication" flag enabled in the User Manager.\\
The email can be customized by creating an email template: "Two Factor Auth"\\
This step is required.
\\
[otp_email_template.png]\\
\\
Variable for the one time password : {auth_token}\\
\\
\\
OTP's mainly for Webinterface logins, variants like Google Authenticator TOPT would be straight meaningless for FTP, SFTP, since it's impossible enroll anyways.
A hidden flag in __prefs.XML__ controls for which protocols OTP should be enabled by default
{{{
<twofactor_secret_auto_otp_enable_protocols>ftp,ftps,sftp,http,https,webdav</twofactor_secret_auto_otp_enable_protocols>
}}}
\\
Version Date Modified Size Author Changes ... Change note
50 17-Sep-2024 03:07 1.899 kB Sandor to previous
49 05-Aug-2024 02:39 1.891 kB Ben Spink to previous | to last
48 05-Apr-2024 10:09 1.887 kB Ada Csaba to previous | to last
47 05-Apr-2024 10:08 1.888 kB Ada Csaba to previous | to last
46 05-Dec-2023 05:32 1.486 kB Sandor to previous | to last
45 05-Dec-2023 05:32 1.482 kB krivacsz to previous | to last
44 05-Dec-2023 05:32 1.468 kB krivacsz to previous | to last
43 05-Dec-2023 05:32 1.468 kB krivacsz to previous | to last
42 05-Dec-2023 05:32 1.396 kB krivacsz to previous | to last
41 05-Dec-2023 05:32 1.391 kB krivacsz to previous | to last
« This page (revision-50) was last changed on 17-Sep-2024 03:07 by Sandor
G’day (anonymous guest)
CrushFTP11 | What's New

Referenced by
LeftMenu

JSPWiki