Google 2FA - NitroKey Pro

gregory 2017-06-04 18:12:08 UTC #1

Hi,

I recently bought a NitroKey Pro and wanted to enable it with Google's 2FA.

I logged into myaccount.google.com and chose the "Google Authenticator" option. Instead of scanning the bar-code, I copied the base32 secret code provided.

Then from the Nitrokey tray app, I created a new slot for Google and pasted in the secret code. You can see the settings I've configured in the screenshot below.

After creating this new TOTP, I used the Nitrokey app to generate a verification code.

However, when I go to paste it into the browser window, Google rejects the 6-digit code generated by Nitrokey.

Any help would be appreciated,

Thank you,

Gregory

karthanistyr 2017-06-04 21:18:17 UTC #2

Check your system's clock is rigorously accurate. Sometimes, a slight difference late or early can impair the OTP creation.

I also found that it happened to me and that removing the device from the USB port and plugging it back in helped.

gregory 2017-06-04 21:51:55 UTC #3

Hi,

Thanks for your reply. I've double-checked the time settings for my system clock. It's completely accurate.

I should mention that I already have TOTP setup for other services, including Digital Ocean, ProtonMail and GitHub; using the very same Nitrokey I should add. It's only Google that's been giving me bother.

I unplugged the Nitrokey after creating the new TOTP slot and plugged it back in. To no avail unfortunately.

I'm sure my OTP Slot Configuration options are correct.

Manage Slots: TOTP
Input Format: Base 32
Parameters:
- TOTP Interval: 30 seconds
- TOTP Length: 6 digits
Token ID: none

Below is the pop-up box from Google Account. It displays a secret code of 32 characters in length with spaces. I make sure to copy this without any trailing whitespace.

I also tried HOTP but that didn't work for Google either...

germano 2017-06-07 15:40:57 UTC #4

I managed to use Nitrokey Pro with Google 2FA. I installed Google Authenticator on my Android phone, then in Google (web) dashboard I copied the base32 secret code provided and I entered it into Google Authenticator. I have also entered that password into the Nitrokey Pro OTP slot, with same options of you screenshot.
Once I entered the password into Google Authenticator, it returned me back a passnumber that I inserted into the webpage once I pressed continue (don't remember the exact word).
Now I am able to use codes generated by Nitrokey Pro, instead of using Google Authenticator application

jan 2017-06-26 15:16:59 UTC #5

@gregory Did you solve this issue?

Gregory_Kelleher 2017-07-07 20:54:07 UTC #6

No, unfortunately I did not.