Hi, is there a plan to implement time-based 2FA (TOTP) so that we can use regular authenticators like Google Authenticator or others?
It’s unlikely it will be added, it isn’t very secure and most devices now have built in WebAuthn. WebAuthn is a very secure standard and well supported in Pritunl Zero. Authentication will stop working if the SSL certificate expires when this occurs the command sudo pritunl-zero disable-policies
can be used to disabled all the security policies to allow logging in without the WebAuthn authentication. This command can also be used if the WebAuthn device is lost.