TOTP cannot be re-enabled


Old installation, updated to 5.0.2
Login via LDAP
OTP has been enabled for all users/groups, but new users have to manually activate TOTP.
(email2fa works fine when it’s enabled, but we need only TOTP)

The query below list enabled TOTP users, but TOTP is not enforced, but available,
db.users.find({"services.totp": {$exists: true}}, {"username": 1, "_id": 0})

Enabled TOTP users have the record

 "totp" : { "enabled" : false ,
 "hashedBackup" : [ "XXXXXXYYYYYZZZZ",}


 "email2fa" : { "enabled" : true ,

Server Setup Information

  • Version of Rocket.Chat Server: 5.0.2
  • Operating System: RHEL8
  • Deployment Method: tar
  • Number of Running Instances: 2x2
  • DB Replicaset Oplog: yes
  • NodeJS Version: v14.19.3
  • MongoDB Version: v4.4.19
  • Proxy: nginx and F5
  • Firewalls involved: no