Is it possible to have a TOTP as a Cloudflare Access authentication method?
All I could find was PINs sent through email. I was wondering if I just somehow missed this or it's not an available authentication method ?
Would be great if I were able to generate codes/QRs that would be allowed to have TOTP tokens generated for and used for authentication
2 Replies
Whitelisted users only
I, the admin, would add them in the cloudflare dashboard
But on second thought, it's not as necessary as I first thought, I can just set the session expiry to one month and have the codes sent via email. No big deal
That said, I tried OTP and whitelisted 2 emails and haven't received the codes in any of them. Not sure what I'm doing wrong
sounds like they're not properly added, could try the policy tester or ensure you're using the right policy
The answer to your overall question though is CF just hooks up to Identity Providers and isn't an Identity provider on it's own. You can hook up Identity Providers which tell you which mfa they support and require a specifc one (hardware security key, 2fa, etc)