cevoaustralia / aws-google-auth

Provides AWS STS credentials based on Google Apps SAML SSO auth (what a jumble!)

MIT License

537 stars 181 forks source link

Advanced Protection and Security Code from g.co/sc? #232

Open fransdewet opened 2 years ago

fransdewet commented 2 years ago

When this is used with accounts that have advanced protection enabled, that also have the ability to generate security codes on other devices that cannot do 2FA directly I get the error:

Something went wrong - Could not find SAML response, check your credentials or use --save-failure-html to debug.

When I save the failure HTML it is a file that prompts me to get a Security Code:

Does anyone have an idea of how to get past this? All our admins have Advanced Protection enabled.

inhumantsar commented 2 years ago

226 might fix this for you. It works for me. We're using a Yubikey. When running `aws-google-auth` it asks for a security code from g.co/sc. Once you punch that it, you'll be good to go.

While waiting for it to be merged in, you can install that PR's fork with pip:

pip install git+https://github.com/cevoaustralia/aws-google-auth.git@refs/pull/226/head#egg=aws_google_auth

Hope this helps!

cevoaustralia / aws-google-auth

Advanced Protection and Security Code from g.co/sc? #232

226 might fix this for you. It works for me. We're using a Yubikey. When running aws-google-auth it asks for a security code from g.co/sc. Once you punch that it, you'll be good to go.

226 might fix this for you. It works for me. We're using a Yubikey. When running `aws-google-auth` it asks for a security code from g.co/sc. Once you punch that it, you'll be good to go.