Comments (15)
This is a daily problem. I can recover without plugging in a second token by just re-running the Keymaster client. Usually on the third attempt it works.
from keymaster.
I'm also experiencing this when running keymaster on macOS. As @rgooch says, it tends to work on the third attempt.
from keymaster.
Now I seem to be getting this error instead of the read response error:
top of doU2fAuthenticate
manufacturer = "Yubico", product = "YubiKey OTP+FIDO+CCID", vid = 0x0407, pid = 0x1050
hid: privilege violation
from keymaster.
@prydonius : if you diable the OTP on the yubikey is this still an issue? (I think this would be a workaround)
from keymaster.
I think I disabled OTP mode and still experienced the problem.
from keymaster.
I just disabled OTP, let's see if that improves anything
from keymaster.
@cviecco for the last couple of days I haven't been seeing these errors with OTP disabled. Will update this if I start seeing them again.
from keymaster.
I get this repeatedly
top of doU2fAuthenticate
manufacturer = "Yubico", product = "YubiKey OTP+FIDO+CCID", vid = 0x0407, pid = 0x1050
hid: privilege violation
Even though I enter the same password again and again, I am literally copy pasting the password to make sure that I am entering the right thing.
After 4 attempts it succeeds.
from keymaster.
@prydonius do you still see the hid: privilege violation
?
from keymaster.
@nikunjy have you disabled OTP? After doing so, I no longer get either of the two errors reported here.
from keymaster.
I turned off OTP a long time ago and I've seen this problem occasionally.
from keymaster.
@rgooch : what version of yubikey do you use(paste the whole -checkDevices string) and what version of MacOS?
from keymaster.
@cviecco I have MacOS Catalina 10.15.4. Output:
`manufacturer = "FT", product = "U2F KB", vid = 0x0854, pid = 0x096e
manufacturer = "Yubico", product = "YubiKey FIDO+CCID", vid = 0x0406, pid = 0x1050`
from keymaster.
Currently the incidence of this is very low for me (I have OTP disabled and am running MacOS Catalina v10.15.4). I don't see a way to debug this without being able to reproduce it on-demand.
from keymaster.
An idea.. test with using libfido2.. which is mady by yubico? https://github.com/keys-pub/go-libfido2
from keymaster.
Related Issues (20)
- Support openid PKCE code flow (RFC 7636) HOT 1
- Older Yubikeys do not work (but work elsewhere with U2F!)
- Gnome Loads Bad Keys
- SameSite Unset in auth_cookie HOT 1
- Fix test regression on moving location of temporary keymaster cert. HOT 1
- cloud-foundations.org has been lost? HOT 3
- When using okta, the UI does not mention that a push has been sent (web). HOT 1
- oauth2 login loses openid_connect_idp redirect destination HOT 3
- newer Firefox fails to attempt U2F validation
- FEATURE REQUEST: Make "needs bootstrap flow" explicit. HOT 2
- FEATURE REQUEST: Copy button on a token webpage (keymaster 1.9.1)
- U2F redirect comes w/ semicolons HOT 5
- Chrome 96 - U2F being deprecated. HOT 2
- Generate Keymaster CA to be used as client only certificates HOT 5
- AJAX requests with the oidc golib and keymaster HOT 2
- Yubikey fails first time with Mac client HOT 1
- keymaster cli doesn't work w/ keymaster behind AWS ALB HOT 2
- github.com/duo-labs/webauthn is deprecated
- difficulty enrolling Yubikey HOT 1
- Keymaster timing out on RDS access HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from keymaster.