Home » Categories » Common Errors & Troubleshooting

Disable two factor authentication (2FA Google, Yubikey , Access Keyword, DUO)

Article ID: 68 | Rating: Unrated | Last Updated: Thu, Sep 20, 2018 at 2:56 AM

How do i disable two factor authentication ( 2FA ) for the admin user and others?

For Ezeelogin Version 7 and above

 

1. To disable two factor authentication ( 2FA ) for admin user, run the following commands.

[email protected]:~# php /usr/local/ezlogin/ez_queryrunner.php "update prefix_settings SET value = 0 WHERE name = 'two_factor_auth'"

 

[email protected]:~# php /usr/local/ezlogin/ez_queryrunner.php "update prefix_users set egs=NULL,eak=NULL,eyk=NULL,set_duo=NULL where id=1"


2. To disable  two factor authentication ( 2FA ) for all users ,run the following command.

[email protected]:~# php /usr/local/ezlogin/ez_queryrunner.php "update prefix_users set egs=NULL,eak=NULL,eyk=NULL,set_duo=NULL"

 

Abbreviations:
   eak       = Access Keyword
   eyk       = Yubikey
   egs       = Google Authenticator
   set_duo = DUO 2FA     

 

 

For Ezeelogin Version 6 and below

 

1. Find database name and database prefix from /usr/local/etc/ezlogin/ez.conf in ezeelogin gateway server.

[email protected]:~# cat /usr/local/etc/ezlogin/ez.conf

system_folder /var/www/ezlogin/

force_https yes

uri_path /

db_host localhost

db_port /var/run/mysqld/mysqld.sock

db_name ezlogin_por

db_user ezlogin_cxy

db_pass ymhbtPaY)VzD2g]84

db_prefix casmbn_

cookie_encryption_key D8$Frp5fF_FF

cookie_name rlbup

cookie_path /

www_folder /var/www/html/ezlogin/

admin_user ezadmin

mysql_encrypt no


2. Login to mysql command prompt

Replace the "db_user" &  "dn_name" with values in  /usr/local/etc/ezlogin/ez.conf of your ezeelogin jump server.You can find the db password as "db_pass" in /usr/local/etc/ezlogin/ez.conf of your ezeelogin jump server.

[email protected]:~# mysql -u db_user -p db_name

4. Run the following command to  two factor authentication ( 2FA ) for admin user

Replace "dbprefix_" with the value of dbprefix_ in  /usr/local/etc/ezlogin/ez.conf of your ezeelogin jump server. For example "dbprefix_settings" is to be replaced with "casmbn_settings" here.

UPDATE dbprefix_settings SET value = 0 WHERE name = 'two_factor_auth' ;

UPDATE dbprefix_users SET egs=NULL,eak=NULL,eyk=NULL,set_duo=NULL where id=1;


Run the following command two factor authentication ( 2FA ) for all users.

UPDATE dbprefix_users SET egs=NULL,eak=NULL,eyk=NULL,set_duo=NULL;

 

 you have to use correct db_name and dbprefix from ez.conf if you are running the mysql commands manually.
Posted - Thu, Jun 15, 2017 at 1:04 AM. This article has been viewed 5460 times.
Filed Under: Common Errors & Troubleshooting
0 (0)
Article Rating (No Votes)
Rate this article
    Attached Files
    There are no attachments for this article.
    Related Articles RSS Feed
    Error: Reached maximum number of servers allowed by current license. Please upgrade license to add more servers.
    Viewed 1737 times since Thu, Nov 2, 2017
    Primary node showing the public ip instead of lan ip when cluster is configured
    Viewed 492 times since Wed, Nov 21, 2018
    LDAP verification failed. Connection to {hostname} closed.
    Viewed 731 times since Fri, May 18, 2018
    internal command ezinfo not displaying server details
    Viewed 2379 times since Wed, Jun 14, 2017
    Setting session time out for the webinterface
    Viewed 2482 times since Wed, Jun 14, 2017
    Error occured. Please contact the administrator - Permission Denied - creation failed
    Viewed 1505 times since Thu, Jun 15, 2017
    Error opening terminal: xterm-256color.
    Viewed 205 times since Wed, Jul 31, 2019
    User could not be found on the system:: No error information
    Viewed 278 times since Thu, May 30, 2019
    User add failed
    Viewed 2245 times since Wed, Jun 14, 2017
    User add failed: Error waiting for connection: Cannot add user on this node: Could not connect
    Viewed 1670 times since Wed, Jun 14, 2017