google / google-authenticator

Open source version of Google Authenticator (except the Android app)
Apache License 2.0
5.22k stars 967 forks source link

Verification codes not working #237

Closed ThomasHabets closed 8 years ago

ThomasHabets commented 10 years ago

Original issue 238 created by laidbackcyclist on 2013-01-05T10:10:52.000Z:

What steps will reproduce the problem?

  1. 2 step verification always fails 2. 3.

What is the expected output? What do you see instead?

Verification failure

What version of the product are you using? On what operating system?

Authenticator v 1.1.4.757 for ios

Please provide any additional information below.

Purchased new iphone recently - number is the same

ThomasHabets commented 10 years ago

Comment #1 originally posted by klyubin@google.com on 2013-01-07T17:45:08.000Z:

I suggest adding a new key from which codes will be generated. Please go to https://accounts.google.com/security on your desktop computer, then 2-step verification settings, then in the "Mobile application" row click on "Move to a different phone". This should offer you to add a key to your Google Authenticator app on the iPhone by scanning a QR code. In the process, this will also verify that the codes generated from this new key are valid.

I'm not sure why the currently generated codes are not valid. It may be because the time on the iPhone is wrong (in which case the above procedure will detect this). It may also be because you entered an ASP (application-specific password) as the key into Google Authenticator.

ThomasHabets commented 10 years ago

Comment #2 originally posted by cheldear39 on 2013-03-19T19:33:36.000Z:

I'm having the same problem. I have researched this issue for solutions going back over 2 years. I have broken this comment down into basic info, tech specs, and reproduction instructions categories (with alternative steps taken) with respective information to the same. Screenshots attached since visuals are always more pleasing. I've done my due diligence in testing. I've got to be missing something very simple--PiBKaC, PiBKaMac, or PiBiOSaG+.

Possible problem? Did enabling 2-step auth modify how I log onto my google account (there was a notification after enabling 2-step auth that I am now logging into my google account with both a password and a verification code, but I surmise that happened when I "turned on 2-step auth upon verifying my phone number.)

I would greatly appreciate help. I've now spent over 4 hours reproducing this issue and researching possible solutions to no avail.

Basic Info:

  1. My iPhone 4s ios 6.2 time is sync'd to the second via online servers.
  2. I have never used an ASP.
  3. I have a clean iOS install of Google Authenticator for my iPhone (installed twice now.)
  4. My mobile phone number is only being used under the mobile device.
  5. My backup phone number is a landline, verified.
  6. I have set up, and reset-up 2-step verification twice now (the latter after going insane with google authenticator), ensuring all numbers are verified per sms/voice.
  7. Again, NO ASPs have been set for anything, including Google+ account.

iPhone and other Tech Specs:

Hardware: iPhone 4s iOS version: 6.1.3 Google Authenticator version: 1.1.4.757

Reproduction instructions: (The below assume knowledgeable navigation of Google 2-step authentication sites/links and Google Autenticator mobile app.)

  1. Assume new setup of Authenticator with mobile device.
  2. Assume backup phone is landline and verified.
  3. Assume no ASPs created, and have not been used.
  4. Install Google Authenticator for iPhone 4s, iOS 6.2
  5. Web: Google/Account/Security/2-step verification/Settings a. Mobile Application: Select iPhone b. Popup shows with QR code and instructions. c. iPhone Google Authenticator: Add account by selecting "blue plus sign." d. Select "Time Based" per instructions in step "b." e. Scan QR Code in popup window shown in step "b." f. Receive 6-digit key. g. Note countdown (which is super-fast, btw!) h. Note email addy associated (which is my google email addy) i. Click "plus sign" at bottom right of Google Authenticator window. h. Enter email addy shown in step "h." provided by QR code. i. Enter 6-digit key shown in step "h." provide by QR code. j. Receive error: (line 1) "Invalid Key" (line 2) "The key 'xxxxxx" is invalid' (replace 'xxxxxx' with key provided.) k. Ensure information was entered within time frame. k. Per instructions in step "b.", see if code can be verified in code text box in popup window ("step b."), if I make it in the time interval. (See alternative actions taken below.) l. "Verify and Save" works every time. I receive the following message each time I verify in the popup window: "Google Authenticator setup successful. Your Google Authenticator app has been successfully configured. Note: the codes generated by any previous instances of the Authenticator app will no longer work."

Alternative Actions Take within the above steps during copious setup attempts:

Missed Intervals: Note: I only use this alternative if I have not verified the code on the popup screen.

  1. In Google Authenticator, return to screen with key generated by the QR code.
  2. At the beginning of a new time interval, select "blue plus sign" at bottom right of screen.
  3. Enter account email and key provided in previous step.
  4. Receive same error from original steps.
  5. Ensure information entered before interval ended.
  6. Try step "l." from original steps again, receive same message.

Alternative: Delete key provided by QR Code, use orig QR Code for new key. Note: I only use this alternative if I have not verified the code on the popup screen.

  1. In Google Authenticator, return to screen with key generated by the QR Code.
  2. Select "edit" at bottom left of screen.
  3. Delete the key generated to the original QR Code.
  4. Make sure "Time Based" is still selected.
  5. Select "Scan Barcode."
  6. Rescan original Barcode.
  7. Follow original steps "f-l" above.

Repeat all of the above infinitum for approximately 2 hours. Search Google for solutions using various keywords, going back 2 years. Wash, rinse, repeat. :)

Again, I have attached a couple of screenshots that are much nicer that reading my copious steps above, and 1 validation screenshot, showing that the scan is providing keys.

If anyone does respond, thank you for taking the time to review this verbose comment.

Michelle Dear

ThomasHabets commented 10 years ago

Comment #3 originally posted by shah@google.com on 2014-01-14T06:07:30.000Z:

<empty>

ThomasHabets commented 10 years ago

Comment #4 originally posted by shaikabdulmalik229 on 2014-07-31T21:07:47.000Z:

My Google is not working I want new coad I want to take new coad
My email Shaik Abdul malik229@gmail

ThomasHabets commented 8 years ago

this looks like a google account support issue, but even if not then it was 2.5 years ago, so I'm assuming it worked out or you gave up.

nmathur commented 6 years ago

We are also facing same issues for random users. .they are entering correct code, time is synced but still application is returning invalid code alert. We are not able to solve the core of the issue .. please re-open and share suggestions ..

yggowda commented 6 years ago

I'm having the same issue with iPhone4 and Google 2F authenticator, not able to login to our company application. It says invalid Token.