Recovery codes are not generated for U2F devices. Select Register U2F Device to complete the Activate it by pressing its button.Ī message displays indicating that your device was successfully set up.
Download them and keep themĮnable one-time password using FortiAuthenticatorįorti_token_cloud : enabled : true client_id : YOUR_FORTI_TOKEN_CLOUD_CLIENT_ID client_secret : YOUR_FORTI_TOKEN_CLOUD_CLIENT_SECRET If you entered the correct pin, GitLab displays a list of recovery codes. Enter the six-digit pin number from the entry on your device into Pin code.Enter the details provided to add the entry manually.
Scan the code displayed by GitLab with your device’s camera to add the entry automatically.In the application, add a new entry in one of two ways:.Select Enable Two-factor Authentication.In GitLab 14.3 and later, your account email must be confirmed to enable 2FA. After you enable 2FA, back up your recovery codes. Using a one-time password authenticator.Account email confirmation requirement generally available and feature flag ensure_verified_primary_email_for_2fa removed in GitLab 14.4.Deployed behind the ensure_verified_primary_email_for_2fa flag, enabled by default. Account email confirmation requirement introduced in GitLab 14.3.You must use a personal access token instead. When 2FA is enabled, you can’t use your password to authenticate with Git over HTTPS or the GitLab API. Use personal access tokens with two-factor authentication If you set up a device, also set up a TOTP so you can still access your account if you lose the device. This performs secure authentication on your behalf. You supply your username and password to sign in. You’re prompted to activate your U2F or WebAuthn device (usually by pressing a button on it) when Codes are generated by your one-time password authenticator (for example, a password Time-based one-time passwords ( TOTP).
GitLab supports as a second factor of authentication: Your account, they would need your username and password and access to your second factor of authentication. Two-factor authentication (2FA) provides an additional level of security to your GitLab account.
Troubleshooting Two-factor authentication.Have two-factor authentication disabled on your account.Sign in with two-factor authentication enabled.Regenerate two-factor authentication recovery codes.Enable one-time password using FortiToken Cloud.Enable one-time password using FortiAuthenticator.Use personal access tokens with two-factor authentication.