Introduction
Тhe process to setup 2FA authentication app in TF Cloud, assumes that users will use a device that is able to scan the QR code (for example: а mobile phone)
Expected Outcome
Once the task is completed you will be able to setup TOTP app in Terraform Cloud
Use Case
If you would like to use a CLI Authenticator installed on your machine (Windows/Linux/MacOS). So in this case, the user will be unable to read the QR code provided by TF Cloud.
Solution
- Read the QR code. It contains a URL that looks like:
otpauth://totp/<TFC_USER_EMAIL>?secret=******************&issuer=Terraform+Cloud+%28app.terraform.io%29
-
Get the secret from the secret query parameter (******************)
-
Provide the secret to your TOTP app
Additional Information
-
Make sure that QR reader will display and not follow the encoded URL. If the QR reader is automatically following the URL it will open the default TOTP application installed on the device and configure an account in it.