So I selfhost Vaultwarden which allows TOTP but I like to keep my 2FA and Password Manager separate, so I’m looking for something like Vaultwarden which can sync up with my server, but for 2FA only. I came across 2FAuth which can do it, but it only has webapp, so if a Alternative Service where there is a client for iOS and Android it would be a lifesaver. Thanks in advance for any suggestions or recommendations.
Here’s a crazy idea…
Why not use another Vaultwarden account? :D
Lol I just came up with such crazy idea 45 mins ago while replying to another comment , here I went crazier and thought of whole 2fa instance instead of account : https://lemmy.dbzer0.com/comment/1144220
That’s an overkill and doesn’t give any extra security. Multiple accounts is more reasonable.
You’re just objectively wrong. 2 instances will ALWAYS be more secure.
In my opinion the best 2FA is a yubikey. They have an TOPT app too, but I prefer webauthn.
I wish that cloudflare deal was still available. They are pretty expensive at RRP, although probably worth it on balance.
If yubikeys are too expensive for you, you can use the security keys. Webauthn is supported, but not TOTP. You could use vaultwarden or bitwarden for TOTP and the Security key as 2FA for bitwarden 🤔
I’m actually using KeepassXC etc at the moment and am waiting on them to support
hmac-secretso the cheaper security keys work. Although I’m willing to switch to vaultwarden, I’d be more comfortable with both supporting it before I invest in it.
Does it need to be selfhosted, or is an open source app okay? Okay I’ve not red all your post… there is no ios client for aegis… I use aegis: https://github.com/beemdevelopment/Aegis
I use Aegis as well. I auto backup the files to my NAS at home
For people who don’t mind it not being self hosted: Authy is good for this. You can also set a backup password (to encrypt your tokens on their servers) and optionally use it cross device.
You can allow multi device temporarily to setup, then disable to not allow new devices, etc.
(I get you didn’t ask this specifically, but figure it could be useful to someone else).
There is also a authy-export tool that makes it pretty easy to export all the tokens to selfhosted
passrepo.
@fedonr +1 for Aegis
Agreed. I’m using Aegis already, but looking for something to work more like Vaultwarden with Autosync for my parents mainly complete details mentioned here : https://lemmy.dbzer0.com/comment/1142860
@fedonr Vaultwarden also has 2FA option. You can use that if it fits in their workflow.
