I’m using 2FA on https://sso.gnome.org/realms/master/protocol/openid-connect/auth . Next time my second factor device dies, where can I find my recovery keys to authenticate against GNOME SSO? I failed to find anything in the web UI. In case there are no recovery codes, how would my 2FA reset request get verified?
There’s no support for 2FA recovery codes in keycloak as of this time, right now if you lose your 2FA the only way you have is to reach out to the Infrastructure team and receive assistance. Another possibility would be to add a second 2FA to the account.
Thanks. I hope that the Infrastructure team will find ways which scale to reliably verify reset requests in times of computer-generated video call content.