matt73 Posted August 7 Report Share Posted August 7 Hi team, Today I've realized that Enpass OTP doesn't work with Eneba accounts. Eneba's (anonymized) OTPAUTH is the following: Quote otpauth://totp/ENEBA:any_user_email%40mail_domain?secret=create_an_account_and_you'll_see_it&issuer=ENEBA&algorithm=SHA1&digits=6&period=30 I thought Eneba made any change since I configured 2FA with them, so I deleted any 2FA association and reconfigured from scratch. It is curious because when you configure the association you get OK from 2FA check, but when you logoff from Eneba and want to get in again you get 'password wrong' error on 2FA code check. Can you check this out, please? It is a little scary to think that Enpass OTPs can fail on some sites... There is no way (without reaching support) to bypass OTP where activated. Link to comment Share on other sites More sharing options...
AnakinCaesar Posted August 7 Report Share Posted August 7 is this problem only present with your Eneba account or did you experience it with any other aswell? Normally a failing OTP means either wrong timezone or wrong account... 1 Link to comment Share on other sites More sharing options...
matt73 Posted August 7 Author Report Share Posted August 7 (edited) EDITED (Solved). As you said @AnakinCaesar, the problem was time sync... not due to timezone but my desktop computer had lost communications to time.windows.com and it was around 30 secs out of sync. Probably the OTP that were running as expected was thanks to a timeout greater, on those 2FA, than those that weren't. Quote otpauth://totp/ENEBA:any_user_email%40mail_domain?secret=create_an_account_and_you'll_see_it&issuer=ENEBA&algorithm=SHA1&digits=6&period=30 Thans for your help you putted me on the track! ============================================================================================================ Hi, Until now I'd seen this behavior only with Eneba account and during last days I've been using some other accounts without any problem (same vault but different computer and app version Windows Modern -work laptop- vs Windows Desktop -personal desktop computer-). As from your message I've done some testing and there are other 2FA which fails, tests are done all with Enpass desktop 6.11.0 (1695) and haven't tried these from my laptops with Windows Modern App. The test results are: Epic Games -> Code not valid or expired. EA -> Code not valid or expired. But surprise, there are others that runs smoothly, examples: Facebook Notesnook Nvidia Maybe there are more on both sides, working and not working. Let me know if I can assist you giving more details or testing. I forgot to tell, I'm using Windows 11 23H2 (22631.3958). Thanks for your help. Edited August 7 by matt73 SOLVED 1 Link to comment Share on other sites More sharing options...
AnakinCaesar Posted August 7 Report Share Posted August 7 (edited) Oh well, you're welcome! Glad I could help Thanks for that intensive testing. I'm not that sure how every single OTP instance is working BUT some more failing seems like a sync error with the timezone for me. So I'd kindly ask you to check all your devices, if the time zones are correctly set to "automatic" or your time zone and daylight saving is also correct. This might help. If not, some more investegation is needed, which as of right now, I am not sure how to perform. Edited August 7 by AnakinCaesar 1 Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now