2FA error:invalid TOTP code
2FA error: invalid TOTP code
Description
This wiki was followed when the error was observed: https://wiki.zimbra.com/wiki/Zimbra_Two-factor_authentication
Step on which the error occur:
1. configure the WebUI = OK
2. install and config the OTP smartphone app = OK
3. finishing the config, enter the 6 digit code from the smartphone app to the WebUI = FAIL
Exception
We have the following exception in mailbox.log when configuring 2FA:
2017-06-12 08:14:24,190 DEBUG [qtp1068934215-180:https:https://server.in/service/soap/EnableTwoFactorAuthRequest]
[name=user@domain.com;mid=9;ip=10.0.0.1;port=25641;ua=ZimbraWebClient - GC58 (Win)/8.7.9_GA_1794;]
SoapEngine - handler exception: authentication failed for [user@domain.com], invalid TOTP code com.zimbra.cs.account.AccountServiceException$AuthFailedServiceException: authentication failed for [user@domain.com] ExceptionId:qtp1068934215-180:https:https://server.in/service/soap/EnableTwoFactorAuthRequest:1497235464190:2713fdd9f2f40... Code:account.TWO_FACTOR_AUTH_FAILED
Solution
Reason for the issue: time
Synchronizing System Clock with Hardware Clock on the zimbra server fixes the issue.