#8119 U2F for multifactor auth

unreleased
open
nobody
security (26)
General
nobody
2016-09-12
2016-08-15
No

Discussion

  • Dave Brondsema

    Dave Brondsema - 2016-08-19

    Some sites (e.g gitlab) require you to set up regular TOTP before adding a U2F hardware key. Maybe because U2F isn't supported too broadly, so you need regular TOTP to log into non-Chrome browsers or shell services. Bitbucket requires ssh keys first too.

    Many sites let you name your U2F devices, since you can add multiple. They may also record the date it was added.

     

Log in to post a comment.