How to setup 2FA?

Mmarcert · Mar 27, 2024

Hi,
in the Release Notes to 2023.11.1 I saw that 2FA is now supported (https://grommunio.com/release-notes/release-notes-2023-11-1/).
But how to set it up? I had no luck in finding documentation for that.

Kind Regards,
Marco

Oli · Apr 2, 2024

Hello,

I have the same question.

Best regards
Oliver

Mmwilliams · Apr 4, 2024

A simple start:

Install grommunio-auth along with grommunio-keycloak
Run /usr/share/grommunio-auth/setup-grommunio-auth.sh
Log into Keycloak-Admin -> Add Conditional OTP into the flow.
(Optional) configure the OTP Policy
(Optional) define the OTP action as required user actions for forced 2FA

For anything else, please request support.

JJuLeZ_cne · Apr 19, 2024

After installing auth and Keycloak, I'm unable to log in to the /web interface.

redirect /web/nullrealms/grommunio/protocol/openid-connect/auth?s....

Thanks!

Mmwilliams · Apr 24, 2024

JuLeZ_cne

"nullrealms" sounds like you just installed auth and keycloak without setup or your setup failed. Please have a look at /usr/share/grommunio-auth/setup-grommunio-auth.sh - you can re-execute it if it fails, and provide more information (see log)

Oli · Apr 28, 2024

mwilliams thank you, with your instructions at the beginning of the article it worked.