TrueNAS Open Storage Logo
TrueNAS.com Products Enterprise Support Community Support Truenas Security Get TrueNAS Enterprise Download TrueNAS Community Edition About TrueNAS Careers
TrueNAS Open Storage Logo
F-Series
F-Series

All-Flash NVMe Performance.

H-Series
H-Series

Big business performance. Entry level pricing.

Mini Series
Mini Series

Home Labs, Small Office & SMB Applications.

M-Series
M-Series

All-Flash or Hybrid Enterprise Performance.

R-Series
R-Series

Single Controller Storage Appliances.

TrueNAS Enterprise Icon
TrueNAS Enterprise

Mission Critical Storage. 24×7 Enterprise Support.

TrueCommand Icon
TrueCommand

Manage Your TrueNAS Fleet All From One Place.

Use Cases

Analytics Backup & Archival Cloud Data Mobility File Sharing
iX-Storj Media & Entertainment Surveillance Veeam Backup Virtualization

Industry

Audio Broadcasting Gaming Healthcare Manufacturing Media & Entertainment
Automotive Education Government MSP Research & AI

Support

Enterprise Support

For customers with active support contracts.

Community Support

For peer-to-peer, open-source support.

Resources

Case Studies Documentation Apps TrueNAS Security FAQ ZFS Overview
TrueNAS Blog Solution Guides Datasheets Software Status Videos TrueCommand Cloud
TrueNAS Community Edition Community Forum Discord TrueNAS GitHub TrueNAS Merch Store
About TrueNAS Awards Careers Contact Us Our Clients Reviews
Contact Icon
Contact an Enterprise Specialist

Speak with an enterprise storage specialist to find the right solutions for your business needs.

TrueNAS Enterprise Icon
TrueNAS Enterprise

Enterprise-grade storage appliances designed for business and mission-critical environments.

TrueNAS Community Edition Icon
Download TrueNAS Community Edition

Test Drive TrueNAS in Your Environment.

  1. TrueNAS SCALE 23.10 (Archived)
  2. /
  3. CLI Reference Guide
  4. /
  5. Auth
  6. /
  7. Two_Factor
Edit page
TrueNAS SCALETrueNAS Documentation Archive
This content follows the TrueNAS 23.10 (Cobia) releases. Archival documentation is provided for reference only and not actively maintained. Use the Product and Version selectors above to view content specific to different TrueNAS software or major version.

Two_Factor

  3 minute read.

Last Modified 2024-03-19 08:38 EDT

The SCALE CLI guide is a work in progress! New namespace and command documentation is continually added and maintained, so check back here often to see what is new!

Two_Factor Commands

The two_factor namespace has two commands is based on functions found in the SCALE API and web UI. It provides access to two-factor authentication (2FA) configuration methods through the two two_factor commands.

Config Command

The config command displays current 2FA settings

Description

The config command does not require entering properties or arguments. Enter the command, then press Enter. The command returns a table with the current two-factor settings.

Usage

From the CLI prompt, enter:

auth two_factor config

auth two_factor config
+------------+--------+
|         id | 1      |
| otp_digits | 6      |
|     secret | <null> |
|     window | 0      |
|   interval | 30     |
|   services | <dict> |
|    enabled | false  |
+------------+--------+

Update Command

The update command updates 2FA settings and requires one of five arguments in the command string: enabled, otp_digits, window, interval, and services.

Description

The update enabled command requires you to include either the true (enable) or false (disable) option. Enter the command string, then press Enter. The command returns nothing when successful.

Usage

From the CLI prompt, enter:

auth two_factor update enable=true/false

Where true* enables two-factor authentication, and false disables it.

auth two_factor update enabled=true

Description

The update otp_digits command requires you to include a number from six to eight. Enter the command string, then press Enter. The command returns nothing when successful, and returns an error when you enter an invalid integer.

Usage

From the CLI prompt, enter:

auth two_factor update otp_digits=number

Where number is the number of digits from six to eight.

auth two_factor update otp_digits=6

Description

The update window command extends the validity of one-time passwords and requires you to include an integer. Enter the command string, then press Enter. The command returns nothing when successful, and returns an error when you enter an invalid integer.

Usage

From the CLI prompt, enter:

auth two_factor update window=number

Where number is the number of passwords before and after the current one that are still valid. Must be between 0 and 999999999999999999.

auth two_factor update window=1

Description

The update interval command sets the lifespans of one-time passwords and requires you to include an integer. Enter the command string, then press Enter. The command returns nothing when successful, and returns an error when you enter an invalid integer.

Usage

From the CLI prompt, enter:

auth two_factor update interval=number

Where number is the number (in seconds) an OTP will last before expiring. Must be between 5 and 999999999999999999.

s

auth two_factor update interval=30

Description

The update services command enables or disables 2FA for SSH logins, and requires you to include an argument. Enter the command string, then press Enter. The command returns nothing when successful.

Usage

From the CLI prompt, enter:

auth two_factor update services={“ssh”:true/false

Where true/false enables (true) or disables (false) SSH 2FA authentication.

auth two_factor update services={"ssh":true}

Have more questions or want to discuss your specific configuration? For further discussion or assistance, see these resources:

Found content that needs an update? You can suggest content changes directly! To request changes to this content, click the Feedback button located on the middle-right side of the page (might require disabling ad blocking plugins).