captainhost Posted March 13, 2013 Share Posted March 13, 2013 I just upgraded tonight and was very excited to see the Yubikey integration. FINALLY!! I said! I entered in my existing API key as I have it set up for the backend of my main site and it works quite awesomely. It returned with an error, so I fetched a new key thinking maybe it was tied to the address associated with the software. In this case, (billing@example.com), whereas the other key is tied to (admin@example.com). In any event, neither API integration works and returns an error with a red X saying "There was a problem". Also, not seeing the option for my clients to add two-factor authentication in their portal. (I have an account I use for testing). 0 Quote Link to comment Share on other sites More sharing options...
sgrayban Posted March 17, 2013 Share Posted March 17, 2013 hmm I just upgraded tonight and added the API key and set it up under my admin account and its working just fine. So it could be a issue of connection to the yubikey database or a lag in them getting into the db... it does say it takes up to 5 minutes for it to be activated. 0 Quote Link to comment Share on other sites More sharing options...
captainhost Posted March 17, 2013 Author Share Posted March 17, 2013 I did upgrade to their bug fix which solved the admin login issue which works well now. However, the client side is still broken on my end. 0 Quote Link to comment Share on other sites More sharing options...
WHMCS Chris Posted March 18, 2013 Share Posted March 18, 2013 Which version are you running? There was an issue with Yubikey that was resolved in 5.2.2. If you've not upgrade, I recommend that you do. If you continue to see issues, please submit a support request. 0 Quote Link to comment Share on other sites More sharing options...
captainhost Posted March 18, 2013 Author Share Posted March 18, 2013 Chris, running 5.2.2. I submitted a ticket for you (Ticket #JUQ-610332) to login, but you never did with the credentials I supplied to you. I figured things were fixed when I saw the update so I installed that which got the admin side working. I went ahead and closed the ticket myself thinking in the near future a new release would resolve the client side: The Client side will accept the Yubikey and make it look like it will ask for user to authenticate, but it doesn't when logging in. It just lets them in. So, in a sense, nothing there for two-factor authentication. 0 Quote Link to comment Share on other sites More sharing options...
pierre Posted October 12, 2013 Share Posted October 12, 2013 (edited) Currently in the middle of a few hours of work on a saturday to fix a critical WHMCS security issue that I feel was caused by a blatantly basic coding issue, sacrificing family time, does not make me too happy. At least I thought upgrading would now let us use 2FA security and Yubikey we've been promoting for years, just to realize now that it seems to be a paid addon ? Can someone clarify, as the only link I have from http://www.whmcs.com/two-factor/ takes me to a referal page to buy keys we already have. Do I get things wrong ? Could be as this AES injection issue really made my day...not. Edit: Ok, the admin section seems to show I can register 1 yubikey, no charge obviously, so it seems I got that wrong. Now on to ask how we can register our own key each as several people manage our sites... Edited October 12, 2013 by pierre 0 Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.