Yubico Forum
https://forum.yubico.com/

[Solved] Yubikey 4 for Amazon
https://forum.yubico.com/viewtopic.php?f=35&t=2440		 Page 1 of 1
Author:  si18665 [ Mon Sep 26, 2016 8:41 pm ]
Post subject:  [Solved] Yubikey 4 for Amazon
Hello Forum members,

Currently I have configured two accounts with two factor authentication. The GMAIL and Amazon accounts.

The Gmail works seemless. It asks me to press the Yubikey 4 key and complete the authentication. The sequence works also when I switch between the two laptops, where I am testing the Yubikey 4 portability.

The Amazon account shows a strange behaviour. I was unable to add the OCR code produced during the two factor authentication, because it was not recognized. However, Amazon offers the optional manual code, which eventually worked and allow me to login when the Yubico Authenticator produces the OTP. However, the problem is that if I swap laptop and use the second one, with the same Yubikey 4, the OTP code is not recognized. So, I am unable to use the same Yubikey 4 if I change laptop. Any idea what the problem might be?

Thanks.
Regards
Author:  ChrisHalos [ Mon Sep 26, 2016 9:11 pm ]
Post subject:  Re: Yubikey 4 for Amazon
I'm assuming you're using Yubico Authenticator to generate a 6-digit TOTP code (this is the only option I'm aware within Amazon accounts that works with a YubiKey)? If so, have you tried inserting the YubiKey in both computers (one after the other) to see if the codes match? Since it's TOTP, the most logical issue would be that the system times are too out of sync (every time-based implementation is going to have a set amount of time/codes that are considered satisfactory and will be accepted for login). It's important to check the system time first. If the same or within a minute or two, try comparing the timezone settings on both systems to make sure they are correct (I've seen cases where one computer had the correct local time but was set to another timezone, so the actual time was 1 hour off minimum).
Author:  si18665 [ Mon Sep 26, 2016 9:36 pm ]
Post subject:  [SOLVED] Re: Yubikey 4 for Amazon
ChrisHalos wrote:
I'm assuming you're using Yubico Authenticator to generate a 6-digit TOTP code (this is the only option I'm aware within Amazon accounts that works with a YubiKey)? If so, have you tried inserting the YubiKey in both computers (one after the other) to see if the codes match? Since it's TOTP, the most logical issue would be that the system times are too out of sync (every time-based implementation is going to have a set amount of time/codes that are considered satisfactory and will be accepted for login). It's important to check the system time first. If the same or within a minute or two, try comparing the timezone settings on both systems to make sure they are correct (I've seen cases where one computer had the correct local time but was set to another timezone, so the actual time was 1 hour off minimum).


Excellent!
You are right. The two laptops time was different and the Yubico Authenticator code now works in both devices.
Thank you very much
Author:  ChrisHalos [ Tue Sep 27, 2016 6:44 pm ]
Post subject:  Re: Yubikey 4 for Amazon
please mark the subject with [solved] :)
Page 1 of 1 All times are UTC + 1 hour
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/