Locked out by a two factor authentification loop

Description

  • self-hosted rocketchat
  • enabled two factor authentification by email, and auto opt-in users to two factor auth
  • all users imported from an LDAP
  • SMTP email server settings are blank/unset
    => can’t set SMTP server settings, asking for code sent by email, that has never been sent
    => can’t disable two factor authentication, asking for code sent by email, that has never been sent

Server Setup Information

  • Version of Rocket.Chat Server: 3.6.3
  • Operating System: Debian 10
  • Deployment Method: tar
  • Number of Running Instances: 1

Is there any way to disable via a config file / db the two factor authentication ?

1 Like

Found a way myself.

Use Mongodb shell to do those queries :

db.rocketchat_settings.update({"_id" : “Accounts_TwoFactorAuthentication_Enabled”},{$set: {“packageValue” : false}});
db.rocketchat_settings.update({"_id" : “Accounts_TwoFactorAuthentication_Enabled”},{$set: {“value” : false}});

db.rocketchat_settings.update({"_id" : “Accounts_TwoFactorAuthentication_By_Email_Enabled”},{$set: {“packageValue” : false}});
db.rocketchat_settings.update({"_id" : “Accounts_TwoFactorAuthentication_By_Email_Enabled”},{$set: {“value” : false}});

db.rocketchat_settings.update({"_id" : “Accounts_TwoFactorAuthentication_Enforce_Password_Fallback”},{$set: {“packageValue” : false}});
db.rocketchat_settings.update({"_id" : “Accounts_TwoFactorAuthentication_Enforce_Password_Fallback”},{$set: {“value” : false}});

1 Like

I’m in exactly the same position with my Snap deployed server. SMTP server is no longer connecting, so I’m not getting any of the 2FA emails that I need so I can turn 2FA off!

Any chance there’s a Snap config command to turn 2FA off? Or is your method, @Alicya, somehow applicable to a Snap deployment?

I don’t know. Good luck.

Thanks man, perfect response