Salesforce: Multiple one-time verification codes in 1Password

prushizkyedi
prushizkyedi
Community Member
edited August 30 in 1Password in the Browser

We are just getting started with Salesforce, and having been using 1Password to manage two-factor authentication for shared Salesforce accounts, and we've been running into an odd issue: the verification codes start coming up as invalid (the SF error is "Error: Invalid or expired verification code. Try again.").

When we look at the login in 1Password, there will be multiple 'Security' entries showing one-time codes, as well as the one-time password that appears under the username and password, and the codes will be different. The resolution appears to be
1. removing all the one-time passwords
2. logging in as an admin creating a temporary verification code for the account, and disconnecting the authentication method from the account in Salesforce
4. logging in to the account (with the temporary verification code), then going to Profile > Settings > Advanced User Details and initiating the connection process

At this point, the user scans the QR code in the browser, and 1Password will do two things:

  • Show a one-time password in the browser extension
  • Pop up a dialog box that says the one-time password has been copied to memory

The code that has been copied to memory works; the code that is displayed in 1Password does not.

So, now people are able to log back in to the account... until multiple one-time passwords start accumulating again. 1Password support states that the one-time passwords are created as staff go through the authenticator connection process, so we can't prevent multiple ones from being created. So I suspect we need to better educate staff on how to use 1Password.

Has anyone else experienced this issue? And suggestions on how to mitigate this?

1Password Version: Not Provided
Extension Version: 2.27.1
OS Version: Windows 10
Browser: Chrome

Comments

  • prushizkyedi
    prushizkyedi
    Community Member

    We use 1Password to provide access to a shared Salesforce account, and use 1Password to manage the one-time authentication code. We've been experiencing an issue staff log in to Salesforce and get a message that the verification code isn't valid.

    I believe we've isolated the cause: over time, creating multiple one-time codes are created in 1Password, and they often return different codes. (Looking at the login in 1Password, there will be a one-time code directly under the username and password, and then a bunch of 'Security' entries below.)

    The short-term fix appears to be:

    • Remove all the one-time codes in 1Password
    • Go into Salesforce and disconnect the authentication method
    • Log in to Salesforce and re-establish the one-time password (using 'Scan QR code').

    We can set a temporary verification code in Salesforce that staff can use to log in while the 1Password authentication isn't working.

    I have two questions:
    1) Is there a way to prevent these multiple one-time codes from being created in 1Password?
    2) Once we clean up 1Password, is there a way to bypass the temporary verification code and log in with the 1Password verification code?

    1Password Version: Not Provided
    Extension Version: Not Provided
    OS Version: Not Provided
    Browser: Not Provided

  • Dave_1P
    Dave_1P

    Hello @prushizkyedi! 👋

    I'm sorry that your thread was initially missed but I'm happy that you were able to engage with our support team over email. I see that we're currently waiting for your reply. If you'd like to continue the conversation then just reply to my colleague's email from August 20th and we'll get back to you as soon as possible.

    To keep the conversation in one place, I'll close this thread.

    -Dave

    ref: QSP-92717-989

This discussion has been closed.