Why are the firewall admin 2FA login codes being rejected by the firewall?
Options
Zyxel_Cooldia
Posts: 1,590 
Zyxel Employee
Zyxel Employee
in Other Topics
Question:
Why are the firewall admin 2FA login codes being rejected by the firewall?
Answer:
This issue usually occurs if the mobile phone's clock is off by even a minute or two. The Google Authenticator app relies strictly on precise time-synchronization to generate valid tokens.
How it works:
Both the client device and the firewall independently calculate the authentication code using a shared secret key and the current timestamp. Because of this independent calculation, if the time on either side drifts even slightly out of sync, the generated codes will not match, and the firewall will reject the login attempt.
Tagged:
0
Categories
- All Categories
- 442 Beta Program
- 3K Nebula
- 229 Nebula Ideas
- 130 Nebula Status and Incidents
- 6.6K Security
- 661 USG FLEX H Series
- 359 Security Ideas
- 1.8K Switch
- 86 Switch Ideas
- 1.4K Wireless
- 56 Wireless Ideas
- 7.1K Consumer Product
- 305 Service & License
- 496 News and Release
- 95 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 5K FAQ
- 34 Documents
- 89 About Community
- 110 Security Highlight