search

crowdsecurity / crowdsec

CrowdSec - the open-source and participative security solution offering crowdsourced protection against malicious IPs and access to the most advanced real-world CTI.
https://crowdsec.net
MIT License
8.8k stars 453 forks source link

Cannot scan QR code using Yubico #3018

Open chrisreeves- opened 4 months ago

chrisreeves- commented 4 months ago

What happened?

When trying to enable MFA for my account in Crowdsec console I am presented with the QR code to scan. Using the Yubico Authenticator application you can either "scan QR code" or "Add manually", when attempted to scan with the QR code on my screen it cannot see the QR code (I suspect because the QR is presented in front of the console screen

image

What did you expect to happen?

Expecting the authenticator application to add the rolling code to the Yubico application

How can we reproduce it (as minimally and precisely as possible)?

Use the Yubico authenticator app to scan Crowdsec MFA code

Anything else we need to know?

No response

Crowdsec version

```console $ cscli version # paste output here ```

OS version

```console # On Linux: $ cat /etc/os-release # paste output here $ uname -a # paste output here # On Windows: C:\> wmic os get Caption, Version, BuildNumber, OSArchitecture # paste output here ```

Enabled collections and parsers

```console $ cscli hub list -o raw # paste output here ```

Acquisition config

```console # On Linux: $ cat /etc/crowdsec/acquis.yaml /etc/crowdsec/acquis.d/* # paste output here # On Windows: C:\> Get-Content C:\ProgramData\CrowdSec\config\acquis.yaml # paste output here

Config show

```console $ cscli config show # paste output here ```

Prometheus metrics

```console $ cscli metrics # paste output here ```

Related custom configs versions (if applicable) : notification plugins, custom scenarios, parsers etc.

github-actions[bot] commented 4 months ago

@chrisreeves-: Thanks for opening an issue, it is currently awaiting triage.

In the meantime, you can:

  1. Check Crowdsec Documentation to see if your issue can be self resolved.
  2. You can also join our Discord.
  3. Check Releases to make sure your agent is on the latest version.
Details I am a bot created to help the [crowdsecurity](https://github.com/crowdsecurity) developers manage community feedback and contributions. You can check out my [manifest file](https://github.com/crowdsecurity/crowdsec/blob/master/.github/governance.yml) to understand my behavior and what I can do. If you want to use this for your project, you can check out the [BirthdayResearch/oss-governance-bot](https://github.com/BirthdayResearch/oss-governance-bot) repository.
LaurenceJJones commented 4 months ago

When you mean app do you mean desktop or mobile Yubico app?

chrisreeves- commented 4 months ago

Desktop application on MacOS