2FA error:invalid TOTP code

2FA error: invalid TOTP code

   KB 23228        Last updated on 06/19/2017  




0.00
(0 votes)
Article-check.png  - This is certified documentation and is protected for editing by Zimbra Employees & Moderators only.


Description

This wiki was followed when the error was observed: https://wiki.zimbra.com/wiki/Zimbra_Two-factor_authentication

Step on which the error occur:

1. configure the WebUI = OK
2. install and config the OTP smartphone app = OK
3. finishing the config, enter the 6 digit code from the smartphone app to the WebUI = FAIL


Exception

We have the following exception in mailbox.log when configuring 2FA:

2017-06-12 08:14:24,190 DEBUG [qtp1068934215-180:https:https://server.in/service/soap/EnableTwoFactorAuthRequest] 
[name=user@domain.com;mid=9;ip=10.0.0.1;port=25641;ua=ZimbraWebClient - GC58 (Win)/8.7.9_GA_1794;]
SoapEngine - handler exception: authentication failed for [user@domain.com], invalid TOTP code com.zimbra.cs.account.AccountServiceException$AuthFailedServiceException: authentication failed for [user@domain.com] ExceptionId:qtp1068934215-180:https:https://server.in/service/soap/EnableTwoFactorAuthRequest:1497235464190:2713fdd9f2f40... Code:account.TWO_FACTOR_AUTH_FAILED


Solution

Reason for the issue: time
Synchronizing System Clock with Hardware Clock on the zimbra server fixes the issue.



Verified Against: Zimbra Collaboration 8.7, 8.6, 8.0 Date Created: 16/06/2017
Article ID: https://wiki.zimbra.com/index.php?title=2FA_error:invalid_TOTP_code Date Modified: 06/19/2017



Try Zimbra

Try Zimbra Collaboration with a 60-day free trial.
Get it now »

Want to get involved?

You can contribute in the Community, Wiki, Code, or development of Zimlets.
Find out more. »

Looking for a Video?

Visit our YouTube channel to get the latest webinars, technology news, product overviews, and so much more.
Go to the YouTube channel »


Wiki/KB reviewed by SME1 SME2 COPY EDITOR Last edit by Teodor Vizirov
Jump to: navigation, search