Hi all,
anyone automated any website which has MFA, No option to get OTP on email, no Security token.
anyone used authenticator chrome extension?
or developed API’s (will it be easy to develop API’s)?
Thank you in advance.
Hi all,
anyone automated any website which has MFA, No option to get OTP on email, no Security token.
anyone used authenticator chrome extension?
or developed API’s (will it be easy to develop API’s)?
Thank you in advance.
You could use this activity package to generate the tokens Two-Factor Authentication Activities - RPA Component | UiPath Marketplace | Overview - https://marketplace.uipath.com/. Better option though would be to check if you can disable MFA altogether for robot account, if just possible.
Hey @ulhas.guttikar
To get the OTP code you need sms gateway…
I used it to retrieve OTP code sent via email, took code and placed it to the website.
e.g. SMSGO worked without any issues.
I disagree on this since the MFA is super easy to do with this package. The TOTP code can easily be generated from password managers such as bitwarden should you need to log in manually and the robot can generate the token very easily using the secret key.
I implement MFA logins all the time, TOTP (the one with the phone app asking you for a code) is hands down the best and easiest. SMS is the worst and email is awful but keep the TOTP one if you can would be my recommendation for best practice.
My reasoning behind suggesting to try to avoid MFA on a robot account, is that in most cases it doesn’t increase security and it’s not a real 2nd factor, as it needs to be stored in some configuration that’s available to robot machine. It becomes basically just another password.
This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.