Is TOTP system not working today?

JeetKumar
Hi,
Is there a problem with TOTP today?
Or has zerodha updated its TOTP checking code or something?

Until friday I was able to login using 2FA TOTP normally.
Today, even after multiple attempts, login did not worked.
It kept rejecting 2FA TOTP code.
Finally account got locked, and I had to reset password.

Now when I am trying to enable 2FA TOTP, then its not working.
I got the email with 6 digit pin.
When I reached the "copy Key" stage, I copied the key to the javascript TOTP generator I am using.
I'm not using authenticator apps like google or microsoft...

Then I entered this TOTP and my password, clicked "Enable TOTP", but it does not works.
It asks for the TOTP code again, as if previous one was invalid, no error message is shown.

I was using same javascript TOTP code generator until friday.
What happened now?

Same javascript TOTP generator was used earlier to enable TOTP in my account.
But now its not working...

The javascript TOTP generator was given here in this discussion thread, as alternative to using apps etc.
https://kite.trade/forum/discussion/10391/mandatory-totp-for-all-kite-connect-apps


Kindly help, or suggest another javascript based TOTP generator I can use.

See, my problem is that I am blind.
Using an app based TOTP generator will be very difficult for me.
Everyday I will need to find someone to use the app on phone, tell me code so that I can login on my laptop.
On my laptop I use a screen reading software, so if code generator is javascript based, then I can simply open it in browser on my laptop itself and login using the code.
I hope someone understands my problem.

Thanks
Tagged:
  • SRIJAN
    The totp system is working perfectly fine.
    If its failing,you might be entering incorrect totp.
    Try with Google or Microsoft Authenticator and check if the error is still happening.
  • JeetKumar
    @srijan
    I cannot use those apps, I mentioned in the post.
    I'm blind, I find it very difficult to use those apps, almost impossible.

    Is there another javascript based TOTP generator I can try with?
    Thanks
  • JeetKumar
    What is the SHA algorithm used by zerodha for TOTP? sha-1, sha-256, or sha-512? Anyone knows? Thanks
  • JeetKumar
    Thanks, and length of key is 32, right?
  • JeetKumar
    @srijan
    Its not working.
    I tried getting TOTP from 3 separate places, none of them worked with zerodha.
    1. From the javascript TOTP generator I was using till now.
    2. From a PHP TOTP generator
    3. From a website which generates TOTP.

    All three gave exact same TOTP, but zerodha says "invalid TOTP", during setup process.

    I'm not sure what is wrong...
    It was working till friday, everything was fine.
    Error happened today morning only.
  • SRIJAN
    SRIJAN edited May 2022
    These 3rd party tools might be using some different method. Try with Google or Microsoft Authenticator as suggested above.

    If that also fails,contact zerodha support:
    https://support.zerodha.com/
  • JeetKumar
    Hi,
    @srijan
    Could you please do me small favour?
    In your google/microsoft app, please create a temp service, using this key below.
    secret key:
    ULR62ICNINWTQU5EWFDMS45QUOJBETZ7

    Then please check with this online generator using same key:
    https://totp.danhersam.com/

    Please let me know if generated TOTP is same in both cases.

    The offline javascript one I use, is also generating same TOTP as this online one above.
    PHP one is also generating same TOTP.

    Key is not in use.
    Zerodha gave this key when I was trying to enable TOTP.
    But enable did not happened in my account, so key is not being used currently.

    Many thanks
  • SRIJAN
    SRIJAN edited May 2022
    Yes,Google Authenticator is showing the same totp as in the online one.

    Maybe ,check if you are not passing the incorrect/old key as a new key is generated each time you try to enable totp.
    If you are using the correct secret key,then contact zerodha support.
  • JeetKumar
    Thanks @srijan many thanks for confirming this buddy.

    I changed keys, all three times I tried to enable 2FA, I am sure.
    Will contact support.
    Thanks
Sign In or Register to comment.