So I selfhost Vaultwarden which allows TOTP but I like to keep my 2FA and Password Manager separate, so I’m looking for something like Vaultwarden which can sync up with my server, but for 2FA only. I came across 2FAuth which can do it, but it only has webapp, so if a Alternative Service where there is a client for iOS and Android it would be a lifesaver. Thanks in advance for any suggestions or recommendations.

    • fedonr@lemmy.dbzer0.comOP
      link
      fedilink
      English
      arrow-up
      5
      ·
      edit-2
      1 year ago

      Yes actually I’m personally using Aegis rn, but I’m okay with backing up and having backup sync elsewhere, and then do the restore if I switch or something.

      But I’m actually looking for Selfhosted solution for my sibling and parents as they are not that tech savvy, so it would be headache for them to think about backup, sync and restore. they need something which is a simple login and go solution like Vaultwarden (bitwarden) with Automatic server sync, where they can enter a link or use app to access it.

      • ellesper@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        1 year ago

        Frankly, if they aren’t tech savvy, you should just have them use Authy. No, it’s not open source, but it’s just fine for the average user.

      • ellesper@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        1 year ago

        Frankly, if they aren’t tech savvy, you should just have them use Authy. No, it’s not open source, but it’s just fine for the average user.

    • vividspecter@lemm.ee
      link
      fedilink
      English
      arrow-up
      3
      ·
      1 year ago

      I wish that cloudflare deal was still available. They are pretty expensive at RRP, although probably worth it on balance.

      • Morethanevil@lmy.mymte.de
        link
        fedilink
        English
        arrow-up
        3
        arrow-down
        1
        ·
        1 year ago

        If yubikeys are too expensive for you, you can use the security keys. Webauthn is supported, but not TOTP. You could use vaultwarden or bitwarden for TOTP and the Security key as 2FA for bitwarden 🤔

        • vividspecter@lemm.ee
          link
          fedilink
          English
          arrow-up
          2
          ·
          1 year ago

          I’m actually using KeepassXC etc at the moment and am waiting on them to support hmac-secret so the cheaper security keys work. Although I’m willing to switch to vaultwarden, I’d be more comfortable with both supporting it before I invest in it.

    • pahakala@lemmy.world
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 year ago

      do you have two or more yubikeys? how do you handle sites that only allow registering a single webauthn dongle? how do you handle backup 2fa?

      loosing my yubikey is the main reason why i havent used it yet for webauthn. I just use pass and openpgp keys stored on the yubikey as that way it was possible to backup the encryption private key to a seperate usb drive that can be used to restore it later if needed.

      • Morethanevil@lmy.mymte.de
        link
        fedilink
        English
        arrow-up
        3
        ·
        1 year ago

        I have 2 yubikeys, one for backup in a safe place. If a site only allows one key, like PayPal, I use another method. Yubikeys are for 2FA on my nextcloud and bitwarden mainly. Both have backupkeys in case you lose them. Those keys are printed out and stored in a safe place too.

        • fedonr@lemmy.dbzer0.comOP
          link
          fedilink
          arrow-up
          1
          ·
          1 year ago

          True, but as I shared in Original Post, I like to keep my 2FA separate from my Password Manager for additional security. But you did give a great idea. I’ll try to run 2 separate instances of Vaultwarden 1 for Password Manager ans 2nd for 2Fa only, I’ll check how that works out and update it here. Thanks tho.