Please could someone help me understand how you can store the 2fa codes when they change all the time, is there a hidden code/password behind those codes that we don’t see? and if that’s true does this secret change with every new code.
Thanks
Please could someone help me understand how you can store the 2fa codes when they change all the time, is there a hidden code/password behind those codes that we don’t see? and if that’s true does this secret change with every new code.
Thanks
@Jem Hi!
You are talking about the “integrated authenticator” (Integrated Authenticator | Bitwarden Help Center) in Bitwarden for so-called TOTP-codes.
TOTP = Time-based One-Time-Passwords
Yeah, this “hidden code” is usually called seed code/phrase or secret key.
From there, a the mostly 6-digit-TOTP-code is created, dependent on the current time → that is, why it is a time-based one-time-password (= TOTP).
There are usually two ways to get the TOTP seed code into Bitwarden’s integrated authenticator (or any other TOTP-2FA-app for that matter):
Here again the link to the help sites, where you get more explanations etc:
PS:
No, the seed code / secret key stays the same. (unless you reset 2FA for the regarding service/account, set TOTP up again etc.)
Thanks good to know I was on the right track is there a good video that explains what I asked?
I would suggest, try it for yourself.
Two comments to that:
If you still want a video - there’s a great short one at How HOTP and TOTP work (youtube.com). Note it also covers HOTP which is not much used for the reasons given at the end of the video.
This topic was automatically closed 60 minutes after the last reply. New replies are no longer allowed.