Add warning to TOTP docs
This commit is contained in:
parent
fd8c3b1b61
commit
d1661712ae
|
@ -47,8 +47,26 @@ In the manager (advanced parameters), you just have to enable it:
|
||||||
TOTP
|
TOTP
|
||||||
- **Issuer name** (Optional): default to portal hostname
|
- **Issuer name** (Optional): default to portal hostname
|
||||||
- **Interval**: interval for TOTP algorithm (default: 30)
|
- **Interval**: interval for TOTP algorithm (default: 30)
|
||||||
- **Range of attempts**: number of additional intervals to test (default: 1)
|
|
||||||
|
.. warning::
|
||||||
|
|
||||||
|
Many mobile applications only support the default value
|
||||||
|
|
||||||
|
- **Range of attempts**: number of additional intervals to test (default: 1).
|
||||||
|
Use this settings if your server and phone clocks are not perfectly in sync,
|
||||||
|
at the cost of weaker security.
|
||||||
|
|
||||||
|
.. note::
|
||||||
|
|
||||||
|
Range is tested backward and forward to prevent
|
||||||
|
positive or negative clock drift.
|
||||||
|
|
||||||
- **Number of digits**: number of digit by codes (default: 6)
|
- **Number of digits**: number of digit by codes (default: 6)
|
||||||
|
|
||||||
|
.. warning::
|
||||||
|
|
||||||
|
Many mobile applications only support the default value
|
||||||
|
|
||||||
- **Authentication level**: you can overwrite here auth level for TOTP
|
- **Authentication level**: you can overwrite here auth level for TOTP
|
||||||
registered users. Leave it blank keeps auth level provided by first
|
registered users. Leave it blank keeps auth level provided by first
|
||||||
authentication module *(default: 2 for user/password based modules)*.
|
authentication module *(default: 2 for user/password based modules)*.
|
||||||
|
|
Loading…
Reference in New Issue