Closed kaypeter87 closed 4 months ago
eugenefvdm
commented
1 year ago Hi! The screenshot helps a lot. To me it appears you're thinking it's a 2FA issue whereby the error text indicates:
...is unavailable when OTP is enabled
Above where it says, One-Time Password (OTP) Digits*, is there an option to try without OTP?
kaypeter87
commented
1 year ago NP! I forgot to add, I do not get the error and everything works when I disable 2FA altogether from my TrueNAS instance.
kaypeter87
commented
1 year ago Hi! The screenshot helps a lot. To me it appears you're thinking it's a 2FA issue whereby the error text indicates:
...is unavailable when OTP is enabled
Above where it says,
One-Time Password (OTP) Digits*, is there an option to try without OTP?
For this specific question, no there is no option to try without OTP.
stale[bot]
commented
10 months ago This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.
kaypeter87
commented
10 months ago I might have some time to submit a PR during the holidays.
hunter-nl
commented
10 months ago I've the same issue. But I need 2FA to keep enabled. So hopefully there will some quick fix coming in FreeNAS-ProxMox.
TheGrandWazoo
commented
10 months ago Well you would not want to enable 2fa for a API user. Possible to create a user without 2fa and then use that to connect to TrueNAS?
I will need to replicate this. Will be doing it tonight/tomorrow to see the possibilities can be. I have a patch coming for Token instead of User based auth so that might help.
hunter-nl
commented
10 months ago I had to disable 2FA system wide for all users to get Freenas-Proxmox working again. Hopefully the token solution is soon available.
kaypeter87
commented
10 months ago Well you would not want to enable 2fa for a API user. Possible to create a user without 2fa and then use that to connect to TrueNAS?
I will need to replicate this. Will be doing it tonight/tomorrow to see the possibilities can be. I have a patch coming for Token instead of User based auth so that might help.
Agreed 👍 but I believe the 2FA is system wide which forces the API user to have 2FA. The token feature will definitely help out with this, appreciate the hard work.
I'll try to play around with the settings on the truenas side to see how the plugin reacts in different scenarios.
hunter-nl
commented
9 months ago I will need to replicate this. Will be doing it tonight/tomorrow to see the possibilities can be. I have a patch coming for Token instead of User based auth so that might help.
Any progress on this?
TheGrandWazoo
commented
9 months ago Yes. I have a version that using the Bearer Token. Will be pushing to the 'truenas-proxmox-testing' repo in a day or so. Also just making a few changes to some variables so seeing if the code updates the underlying config correctly.
stale[bot]
commented
7 months ago This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.
hunter-nl
commented
7 months ago Any progress on this issue?
TheGrandWazoo
commented
6 months ago The testing repo has the Bearer Token feature. Please try that and let me know. I have been running it as I do not get any 2FA.
stale[bot]
commented
4 months ago This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.
I am on
TrueNAS-SCALE-22.12.3.3andpve-manager/7.4-16/0f39f621 (running kernel: 5.15.104-1-pve)It's mentioned that SSH is used to run zfs commands to TrueNAS, but 2FA seems cause a 401 error to the plugin.
There is an option to enable 2FA over SSH, but this is disabled by default.
I'm not entirely sure how the
freenas_api_connectfunction handles this, but it seems API calls now require 2FA codes when its enabled? I had this working with 2FA on Core. Seems like something has changed on the TrueNAS side requiring it.