27
Need recommendations on something like Vaultwarden but for 2FA only. (lemmy.dbzer0.com)
submitted 1 year ago by fedonr@lemmy.dbzer0.com to c/selfhosted@lemmy.world
25 comments fedilink hide all child comments

So I selfhost Vaultwarden which allows TOTP but I like to keep my 2FA and Password Manager separate, so I'm looking for something like Vaultwarden which can sync up with my server, but for 2FA only. I came across 2FAuth which can do it, but it only has webapp, so if a Alternative Service where there is a client for iOS and Android it would be a lifesaver. Thanks in advance for any suggestions or recommendations.

you are viewing a single comment's thread
view the rest of the comments
[-] morethanevil@lmy.mymte.de 6 points 1 year ago

In my opinion the best 2FA is a yubikey. They have an TOPT app too, but I prefer webauthn.

[-] pahakala@lemmy.world 2 points 1 year ago

do you have two or more yubikeys? how do you handle sites that only allow registering a single webauthn dongle? how do you handle backup 2fa?

loosing my yubikey is the main reason why i havent used it yet for webauthn. I just use pass and openpgp keys stored on the yubikey as that way it was possible to backup the encryption private key to a seperate usb drive that can be used to restore it later if needed.

[-] morethanevil@lmy.mymte.de 3 points 1 year ago

I have 2 yubikeys, one for backup in a safe place. If a site only allows one key, like PayPal, I use another method. Yubikeys are for 2FA on my nextcloud and bitwarden mainly. Both have backupkeys in case you lose them. Those keys are printed out and stored in a safe place too.

load more comments (3 replies)
this post was submitted on 20 Jul 2023
27 points (96.6% liked)

Selfhosted

39224 readers
418 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
HybridSarcasm@lemmy.world
HybridSarcasm@lemmy.hybridsarcasm.xyz