Unraid.net Account Upgrades

SpencerJ

By SpencerJ
in Announcements

Recommended Posts

Recommended

Posted by SpencerJ,

MFA Setup We highly recommend that you also set up Multi-Factor Authentication with this new identity provider.   To enable MFA, click on your account name in the top right of the forums and click "Manage Unraid.net Account".       The previous 2FA system you may have set up for the Unraid forums will no longer be used and will need to be reconfigured.      
Recommended by SpencerJ
  • Like

3 reactions

Go to this post
elibosley Rookie

elibosley

Posted
Posted
3 hours ago, 0wja said:

For me, I run 2 servers, one of them says connected in Management Access but not in the My Servers site, the other one wasn't connected either after this update. I tried resetting my password, disabling MFA and try to connect it. In the end, I received an error saying:

Error: {"message":"Request failed with status code 406","data":{"error":"GUID already registered to another email (not matching [email protected])"}}

Doesn't make any sense to me, because they were both connected just fine before this update with my account.

We'll be rolling out a change to fix this ASAP.

 

On 3/4/2023 at 2:00 PM, jonpetersathan said:

Migration went smooth for me so far! I really like the new account page and having a direct link to the OTP Auth url, instead of having to decode the QR code manually, is really awesome, thanks!

 

Just a minor remark (it's more of convenience thing): When generating the OTP Auth URL (and the respective QR code), IMO the label shouldn't include the Amazon Cognito user id, but rather the account name. So instead of: 

otpauth://totp/AWSCognito:UUID?secret=BLABLABLA&issuer=Unraid

The URL with the (URL encoded) account name could look like this: 

otpauth://totp/jonpetersathan?secret=BLABLABLA&issuer=Unraid

Or if you want to include the issuer prefix in the label: 

otpauth://totp/Unraid:jonpetersathan?secret=BLABLABLA&issuer=Unraid

 

I think this Is a bit more convenient and user-friendly when importing into other apps/services. But that's just my humble opinion...

Great advice. We've adopted your recommendation so you should see this going forward on new OTP registrations.

 

We've also rolled out changes to our password policy to require 12 characters with no other requirements- as well as validating passwords with haveibeenpwned.com in order to ensure compromised passwords are not used - please check out the blog post https://unraid.net/blog/unraid-net-account-upgrades for more information on these changes. 

  • Like 2
Link to comment
  • Replies 111
  • Created
  • Last Reply

Top Posters In This Topic

Popular Days

Top Posters In This Topic

Popular Days

Popular Posts

SpencerJ
SpencerJ

This is a security upgrade. Your persistent and vocal concerns over pricing changes have been heard loud and clear. You make a lot of assumptions in your subsequent posts. Please rest assured, any fut

JamieV
JamieV

Why on earth are you implementing archaic complexity requirements? Do you not follow the best practices for Identity - password complexity DOES NOT improve security, in fact there is strong evidence t

binhex
binhex

Just a quick note, no probs for me smooth sailing, i reset my password when prompted, logged in and enabled 2FA using Google Authenticator and away we went, nice work!.

Posted Images

elibosley Rookie

elibosley

Posted
Posted
5 hours ago, 0wja said:

For me, I run 2 servers, one of them says connected in Management Access but not in the My Servers site, the other one wasn't connected either after this update. I tried resetting my password, disabling MFA and try to connect it. In the end, I received an error saying:

Error: {"message":"Request failed with status code 406","data":{"error":"GUID already registered to another email (not matching [email protected])"}}

Doesn't make any sense to me, because they were both connected just fine before this update with my account.

 

The code to fix this bug is now deployed. Give registration another shot - sorry for the inconvenience!

  • Upvote 1
Link to comment
DataCollector Proficient

DataCollector

Posted
Posted (edited)

Hello.

I read most of the postings, but maybe I did not find it MFA will be forced on every user of the forum.

 

I know I am oldstyle, but I don't want the MFA.
I don't want to use (connect) a smartphone or any app (Authenticator) I don't really need(ed up until now).

If I could   I would not even give my data to AWS but as far as I read   that decision was already made from the forum side without asking.

 

So question: Will MFA be forced up on everyone?
Or ist there still the possibility for me to stay as I am and use the forum?
(I always used my Email to log in and from the beginning I used a strong and long password. I do not use MyServers or how that extension is named).

Edited by DataCollector
Link to comment
i_max Noob

i_max

Posted
Posted
On 3/1/2023 at 6:01 PM, GamerBS said:

How will the account recovery work? I didn't see an option to display/download recovery codes.

I just switched to this MFA, but wanted to emphasize, what is the recovery process if the new MFA app gets deleted on the users device, no backup codes were shared. Please clarify.

  • Upvote 1
Link to comment
ljm42 Experienced

ljm42

Posted
Posted
11 hours ago, i_max said:

I just switched to this MFA, but wanted to emphasize, what is the recovery process if the new MFA app gets deleted on the users device, no backup codes were shared. Please clarify.

 

Unfortunately Cognito does not support this. You would need to contact support and we'd send you a token via email, when you respond with that token we'll disable MFA on your account.

 

If you are concerned about losing your codes you might want to look at a different app for MFA, one that syncs codes between devices. A lot of people like Authy for this, personally I use 1Password which handles both passwords and MFA codes seamlessly.

Link to comment
cybrnook Enthusiast

cybrnook

Posted
Posted (edited)
On 3/5/2023 at 2:44 PM, akawoz said:

When going through this account migration it reminded me that Unraid still has a very old (and no longer active) email address.

 

I've successfully migrated using that old email address but when I attempt to change the email address I get the message that the email address was changed successfully, but then on logout and login I notice that it will only accept the old email address (which has reverted in the account settings).

I've attached a screen recording. Any ideas?

 

 

Also have the same issue. Email associated is a very old one, and I also would like to update to a newer one. But, I ran into the same loop you did. Hopefully we get some feedback on how to fix this.

Edited by cybrnook
Link to comment
sonofdbn Enthusiast

sonofdbn

Posted
Posted
On 3/2/2023 at 8:16 PM, sonofdbn said:

 

So I've tried a few more times, including using a clean Edge browser, but still no luck when I click Enable MFA. Nothing happens. And because I keep on trying, Google Authenticator keeps on telling me I already have an unRAID account when I scan the QR code, and asks if I want to keep both accounts. I've always said no (because I can only imagine complications with two accounts).

 

Wasting far too much time on this. 😣

 

Just tried again, and now it's done. 👍

Link to comment
  • 1 month later...
radfx Rookie

radfx

Posted
Posted
On 3/1/2023 at 11:06 AM, JonathanM said:

I'm just concerned there will be a bunch of very confused people not able to log in.

I don’t visit the forums all that often but notices my server plug-in offline, when trying to login I no longer could as it wouldn’t accept my username or email address, thankfully a password reset got my back in☺️

  • Like 1
Link to comment

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing