Issue 238 in google-authenticator: Verification codes not working

[google-aut...@googlecode.com]

Status: New
Owner: ----
Labels: Type-Defect Priority-Medium

New issue 238 by laidback...@gmail.com: Verification codes not working
http://code.google.com/p/google-authenticator/issues/detail?id=238

What steps will reproduce the problem?
1. 2 step verification always fails
2.
3.

What is the expected output? What do you see instead?

Verification failure


What version of the product are you using? On what operating system?

Authenticator v 1.1.4.757 for ios


Please provide any additional information below.

Purchased new iphone recently - number is the same

[google-aut...@googlecode.com]

Updates:
Owner: klyu...@google.com

Comment #1 on issue 238 by klyu...@google.com: Verification codes not
working
http://code.google.com/p/google-authenticator/issues/detail?id=238

I suggest adding a new key from which codes will be generated. Please go to
https://accounts.google.com/security on your desktop computer, then 2-step
verification settings, then in the "Mobile application" row click on "Move
to a different phone". This should offer you to add a key to your Google
Authenticator app on the iPhone by scanning a QR code. In the process, this
will also verify that the codes generated from this new key are valid.

I'm not sure why the currently generated codes are not valid. It may be
because the time on the iPhone is wrong (in which case the above procedure
will detect this). It may also be because you entered an ASP
(application-specific password) as the key into Google Authenticator.

[google-aut...@googlecode.com]

Comment #2 on issue 238 by cheldea...@gmail.com: Verification codes not
working
http://code.google.com/p/google-authenticator/issues/detail?id=238

I'm having the same problem. I have researched this issue for solutions
going back over 2 years. I have broken this comment down into basic info,
tech specs, and reproduction instructions categories (with alternative
steps taken) with respective information to the same. Screenshots attached
since visuals are always more pleasing. I've done my due diligence in
testing. I've got to be missing something very simple--PiBKaC, PiBKaMac, or
PiBiOSaG+.

Possible problem? Did enabling 2-step auth modify how I log onto my google
account (there was a notification after enabling 2-step auth that I am now
logging into my google account with both a password and a verification
code, but I surmise that happened when I "turned on 2-step auth upon
verifying my phone number.)

I would greatly appreciate help. I've now spent over 4 hours reproducing
this issue and researching possible solutions to no avail.

Basic Info:

1. My iPhone 4s ios 6.2 time is sync'd to the second via online servers.
2. I have never used an ASP.
3. I have a clean iOS install of Google Authenticator for my iPhone
(installed twice now.)
4. My mobile phone number is only being used under the mobile device.
5. My backup phone number is a landline, verified.
6. I have set up, and reset-up 2-step verification twice now (the latter
after going insane with google authenticator), ensuring all numbers are
verified per sms/voice.
7. Again, NO ASPs have been set for anything, including Google+ account.

iPhone and other Tech Specs:

Hardware: iPhone 4s
iOS version: 6.1.3
Google Authenticator version: 1.1.4.757


Reproduction instructions:
(The below assume knowledgeable navigation of Google 2-step authentication
sites/links and Google Autenticator mobile app.)

1. Assume new setup of Authenticator with mobile device.
2. Assume backup phone is landline and verified.
3. Assume no ASPs created, and have not been used.


1. Install Google Authenticator for iPhone 4s, iOS 6.2
2. Web: Google/Account/Security/2-step verification/Settings
a. Mobile Application: Select iPhone
b. Popup shows with QR code and instructions.
c. iPhone Google Authenticator: Add account by selecting "blue plus
sign."
d. Select "Time Based" per instructions in step "b."
e. Scan QR Code in popup window shown in step "b."
f. Receive 6-digit key.
g. Note countdown (which is super-fast, btw!)
h. Note email addy associated (which is my google email addy)
i. Click "plus sign" at bottom right of Google Authenticator window.
h. Enter email addy shown in step "h." provided by QR code.
i. Enter 6-digit key shown in step "h." provide by QR code.
j. Receive error: (line 1) "Invalid Key" (line 2) "The key 'xxxxxx" is
invalid' (replace 'xxxxxx' with key provided.)
k. Ensure information was entered within time frame.
k. Per instructions in step "b.", see if code can be verified in code
text box in popup window ("step b."), if I make it in the time interval.
(See alternative actions taken below.)
l. "Verify and Save" works every time. I receive the following message
each time I verify in the popup window:
"Google Authenticator setup successful. Your Google Authenticator app
has been successfully configured. Note: the codes generated by any previous
instances of the Authenticator app will no longer work."

Alternative Actions Take within the above steps during copious setup
attempts:

Missed Intervals:
Note: I only use this alternative if I have not verified the code on the
popup screen.

1. In Google Authenticator, return to screen with key generated by the QR
code.
2. At the beginning of a new time interval, select "blue plus sign" at
bottom right of screen.
3. Enter account email and key provided in previous step.
4. Receive same error from original steps.
5. Ensure information entered before interval ended.
6. Try step "l." from original steps again, receive same message.

Alternative: Delete key provided by QR Code, use orig QR Code for new key.
Note: I only use this alternative if I have not verified the code on the
popup screen.

1. In Google Authenticator, return to screen with key generated by the QR
Code.
2. Select "edit" at bottom left of screen.
3. Delete the key generated to the original QR Code.
4. Make sure "Time Based" is still selected.
5. Select "Scan Barcode."
6. Rescan original Barcode.
7. Follow original steps "f-l" above.

Repeat all of the above infinitum for approximately 2 hours.
Search Google for solutions using various keywords, going back 2 years.
Wash, rinse, repeat.
:)

Again, I have attached a couple of screenshots that are much nicer that
reading my copious steps above, and 1 validation screenshot, showing that
the scan is providing keys.

If anyone does respond, thank you for taking the time to review this
verbose comment.

Michelle Dear



Attachments:
key_errors_in_GA.jpg 57.2 KB
qr_key_web_verify_message.jpg 66.8 KB
QR_code_does_provide_key.jpg 54.6 KB

--
You received this message because this project is configured to send all
issue notifications to this address.
You may adjust your notification preferences at:
https://code.google.com/hosting/settings

[google-aut...@googlecode.com]

Comment #4 on issue 238 by shaikabd...@gmail.com: Verification codes not
working
http://code.google.com/p/google-authenticator/issues/detail?id=238

My Google is not working I want new coad I want to take new coad
My email
Shaik Abdul malik229@gmail

[google-aut...@googlecode.com]

Comment #5 on issue 238 by abish...@gmail.com: Verification codes not
working
https://code.google.com/p/google-authenticator/issues/detail?id=238

Mine too on android same trouble... Using auth code via call / sms instead

[google-aut...@googlecode.com]

Comment #6 on issue 238 by destynie...@gmail.com: Verification codes not
working
https://code.google.com/p/google-authenticator/issues/detail?id=238

I'm having to use SMS as well. It worked perfectly till the iOS 7 update.

[google-aut...@googlecode.com]

Comment #7 on issue 238 by jswift00...@gmail.com: Verification codes not
working
https://code.google.com/p/google-authenticator/issues/detail?id=238

I'm using Google Authenticator v2.49 on android 4.2.2 and I enter in the
verification code (generated in Authenticator) and it says that the code is
incorrect.

Any help would be appreciated.

Thanks