[Adminsysters] ############### 2fa >> git && nextcloud

¬ ` vo.ezn at leverburns.blue
Tue Mar 14 20:24:20 CET 2023 

hi ]]

we had a nextcloud 2fa session on march 7
https://git.systerserver.net/systerserver/notes/-/issues/57


__________ we installed TOTP on nextcloud
__________ created a 2fa group and activated 2fa for this group
__________ prepared a 2fa authentication app on our phones

whenever you are ready to activate 2fa for your account, add yourself to the 2fa group on our nextcloud, sign out and sign in again. choose TOTP when prompted in the web interface. afterwards, QR code will be displayed; scan it with your phone 2fa app and seal the deal ]]


--------- today estragon and i had a session for the borg backup user and apt upgrade caused a hassle, taking down several processes, including nextcloud. we revived gitlab and peetube but ran out of time. we will get to fixing nextloud on March 17.

vims,
_ezn




_____ EOM
¬` vo ezn





------- Original Message -------
On Monday, February 27th, 2023 at 2:54 PM, ¬ ` <vo.ezn at leverburns.blue> wrote:


> hi *
> 

> for a nextcloud 2fa session only 3 ppl are signed up so far >> MARCH 7 // 2 PM or 5 PM
> https://transitional.anarchaserver.org/date/studs.php?poll=aXybzYZRVX3xTjz9
> 

> since 2fa can be setup for a group only and all the members of the group should be prepared to do it, otherwise they'll be locked out:
> we cld make a '2fa' group on nextcloud with only 3 of us for now and configure 2fa for our devices.
> we wld document the process here
> https://git.systerserver.net/systerserver/notes/-/issues/57
> 

> and other nextcloud admins could setup 2fa on their phones incrementally by also joining '2fa' group when you have time and energy ]]
> 

> please share your thoughts
> 

> **
> 

> 

> 

> 

> 

> 

> _____ EOM
> ¬` vo ezn
> 

> 

> 

> 

> 

> ------- Original Message -------
> On Sunday, February 19th, 2023 at 10:31 AM, ¬ ` <vo.ezn at leverburns.blue> wrote:
> 

> 

> > hi,
> > 

> > thank you both ]]
> > i closed the ticket
> > 

> > next up -- nextcloud
> > i hope admins will find a common moment for it
> > https://transitional.anarchaserver.org/date/studs.php?poll=aXybzYZRVX3xTjz9
> > 

> > 

> > 

> > x,
> > _ezn
> > 

> > 

> > 

> > 

> > 

> > 

> > 

> > _____ EOM
> > ¬` vo ezn
> > 

> > 

> > 

> > 

> > 

> > ------- Original Message -------
> > On Sunday, February 19th, 2023 at 10:25 AM, Artemis G <artemis.gryllaki at gmail.com> wrote:
> > 

> > 

> > > Good morning,I also enabled 2fa for the GitLab account!
> > > 

> > > Greetings,
> > > estragon
> > > 

> > > On Sun, 19 Feb 2023 at 00:19, Donna <donna at genderchangers.org> wrote:
> > > 

> > > > Hi,
> > > > 

> > > > I enabled 2fa for the gitlab account. FYI I use freeOTP+
> > > > 

> > > > Donna
> > > > 

> > > > On 18/02/2023 14:12, ¬ ` wrote:
> > > > > hi,
> > > > >
> > > > > we've had a git issue for some time for enabling 2fa for our gitlab.
> > > > > https://git.systerserver.net/systerserver/notes/-/issues/12
> > > > > <https://git.systerserver.net/systerserver/notes/-/issues/12>
> > > > > thanks, mara for bringing this up.
> > > > >
> > > > > would be great if at least admins enforce it.
> > > > > i see most admins have already set it up.
> > > > >
> > > > > *@donna && @estragon, could you please enable it too?*
> > > > >
> > > > > here is a guide for it:
> > > > > https://docs.gitlab.com/ee/user/profile/account/two_factor_authentication.html#enable-one-time-password <https://docs.gitlab.com/ee/user/profile/account/two_factor_authentication.html#enable-one-time-password>
> > > > >
> > > > > i'm using authy on my phone, igni mentioned freeotp+ app also.
> > > > >
> > > > > ---------------------------------------------------------------
> > > > >
> > > > > i opened a new ticket for enabling 2fa on nextcloud as well.
> > > > > https://git.systerserver.net/systerserver/notes/-/issues/57
> > > > > <https://git.systerserver.net/systerserver/notes/-/issues/57>
> > > > >
> > > > > from https://cloud.systerserver.net/index.php/settings/admin/security
> > > > > <https://cloud.systerserver.net/index.php/settings/admin/security>
> > > > > Two-factor authentication can be enforced for all users and specific
> > > > > groups.
> > > > > If they do not have a two-factor provider configured, they will be
> > > > > unable to log into the system.
> > > > >
> > > > > seems like a proper way to do it, is for the admins to get together and
> > > > > configure this in real-time
> > > > >
> > > > > https://docs.nextcloud.com/server/24/admin_manual/configuration_user/two_factor-auth.html <https://docs.nextcloud.com/server/24/admin_manual/configuration_user/two_factor-auth.html>
> > > > > at first, 2fa needs to be enable on our nextcloud and then enforced for
> > > > > a particular group
> > > > >
> > > > > here is a poll for this session
> > > > > https://transitional.anarchaserver.org/date/studs.php?poll=aXybzYZRVX3xTjz9 <https://transitional.anarchaserver.org/date/studs.php?poll=aXybzYZRVX3xTjz9>
> > > > >
> > > > >
> > > > > *
> > > > >
> > > > >
> > > > > _____ EOM
> > > > > ¬` vo ezn <http://ezn.leverburns.blue/>
> > > > >
> > > > >
> > > > >
> > > > >
> > > > > _______________________________________________
> > > > > Adminsysters mailing list
> > > > > Adminsysters at lists.genderchangers.org
> > > > > https://lists.genderchangers.org/mailman/listinfo/adminsysters
> > > > _______________________________________________
> > > > Adminsysters mailing list
> > > > Adminsysters at lists.genderchangers.org
> > > > https://lists.genderchangers.org/mailman/listinfo/adminsysters
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.genderchangers.org/pipermail/adminsysters/attachments/20230314/514bafb4/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: publickey - vo.ezn at leverburns.blue - 0x7E9B40DC.asc
Type: application/pgp-keys
Size: 661 bytes
Desc: not available
URL: <http://lists.genderchangers.org/pipermail/adminsysters/attachments/20230314/514bafb4/attachment-0001.key>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 249 bytes
Desc: OpenPGP digital signature
URL: <http://lists.genderchangers.org/pipermail/adminsysters/attachments/20230314/514bafb4/attachment-0001.sig>

More information about the Adminsysters mailing list