Taking EspoCRM Public

**blueprint** · 07-08-2019, 03:00 PM

I decided in the end to push forward and enable Google two-factor authentication for Apache.

It requires a bit of set up first and uses the Google Authenticator app to authorise the sign in attempts.

For reference, here the is repo which I used: https://github.com/itemir/apache_2fa

**yuri** · 07-08-2019, 04:45 PM

TOTP 2 factor auth is planned for the future. Maybe the next minor release.

**neil** · 07-31-2019, 07:08 PM

Originally posted by yurikuzn

TOTP 2 factor auth is planned for the future. Maybe the next minor release.

Amazing! I'd love this feature too.

**yuri** · 08-01-2019, 09:40 AM

It's already done. For 5.7.0 release.

**item** · 08-01-2019, 05:05 PM

Thanks Yuri... great

**neil** · 08-02-2019, 08:45 AM

Originally posted by yurikuzn

It's already done. For 5.7.0 release.

Fantastic. Thank you.

**blueprint** · 08-02-2019, 09:00 AM

I've just merged the GitHub TOTP changes with the latest 5.6.9 release of EspoCRM.

I've enabled TFA for the "admin" account and having used the Google Authenticator app to scan the QR code and generate the TFA code, I can confirm that I can NO LONGER log in via the admin user name.

The "please wait" banner appears and when I check with Google's developer tools, I can see an "authorization failed" message in the JS console.

**yuri** · 08-02-2019, 12:14 PM

Sorry, but it is not supposed to be merged with 5.6.9. I don't have time to investigate this.

**jasminejoe** · 08-05-2019, 08:42 AM

I would like to thank you for the efforts you have made in writing this post. Thanks for posting Really Such Things. I should recommend your site to my friends.

Taking EspoCRM Public

Taking EspoCRM Public

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment