2 okta push instead of 1

Question

2 okta push instead of 1

infa-ddeore opened this issue 9 months ago · comments

Deepak Deore commented 9 months ago

recently gimme-aws-creds started doing 2 okta push instead of 1

Expected Behavior

there should be only 1 okta push

Current Behavior

$ gimme-aws-creds -p dev
Using password from keyring for xxxxx
Multi-factor Authentication required.
Okta Verify App: SmartPhone_IPhone: iPhone selected
Okta Verify push sent...
Multi-factor Authentication required.
Okta Verify App: SmartPhone_IPhone: iPhone selected
Okta Verify push sent...
Pick a role:

Possible Solution

i dont have clue on this

Steps to Reproduce (for bugs)

run gimme-aws-creds

Context

it requires to accept 2 okta pushes

Your Environment

App Version used:
$ gimme-aws-creds --version
gimme-aws-creds 2.7.0
EDIT:
same issue with 2.7.2 version
$ gimme-aws-creds --version
gimme-aws-creds 2.7.2
Environment name and version:
Operating System and version:
MacOS

Eric Pierce · Answer 1 · Tue Dec 05 2023 00:40:11 GMT+0800 (China Standard Time)

Run gimme-aws-creds --action-register-device and make sure the Device Token gets updated in your config file.

Deepak Deore · Answer 2 · Tue Dec 05 2023 01:27:20 GMT+0800 (China Standard Time)

thanks @epierce for response, still getting 2 push notifications after doing gimme-aws-creds --action-register-device

$ gimme-aws-creds --action-register-device
Using password from keyring for xxxx
Multi-factor Authentication required.
Okta Verify App: SmartPhone_IPhone: iPhone selected
Okta Verify push sent...

Device token saved!

2 push notifications:

$ gimme-aws-creds -p dev
Using password from keyring for xxxx
Multi-factor Authentication required.
Okta Verify App: SmartPhone_IPhone: iPhone selected
Okta Verify push sent...
Multi-factor Authentication required.
Okta Verify App: SmartPhone_IPhone: iPhone selected
Okta Verify push sent...
Pick a role:

anything else to look/ try for? there is no DEBUG option to the cli as well which could show more verbose logs to see what is happening

Nolan Miller · Answer 3 · Sat Dec 09 2023 02:21:40 GMT+0800 (China Standard Time)

thanks @epierce for response, still getting 2 push notifications after doing gimme-aws-creds --action-register-device
$ gimme-aws-creds --action-register-device
Using password from keyring for xxxx
Multi-factor Authentication required.
Okta Verify App: SmartPhone_IPhone: iPhone selected
Okta Verify push sent...

Device token saved!
2 push notifications:
$ gimme-aws-creds -p dev
Using password from keyring for xxxx
Multi-factor Authentication required.
Okta Verify App: SmartPhone_IPhone: iPhone selected
Okta Verify push sent...
Multi-factor Authentication required.
Okta Verify App: SmartPhone_IPhone: iPhone selected
Okta Verify push sent...
Pick a role:
anything else to look/ try for? there is no DEBUG option to the cli as well which could show more verbose logs to see what is happening

I was having this issue too and figured out the solution.

Running gimme-aws-creds --action-register-device will only update the device token for the default profile. If you are using more than one profile, they will each have their own device_token set. Open your .okta_aws_login_config and update the device token for each profiles. Just copy it from the default profile. You could probably also run the --action-register-device with a profile flag, but I haven't tried that.

Deepak Deore · Answer 4 · Sun Dec 10 2023 19:35:56 GMT+0800 (China Standard Time)

Running gimme-aws-creds --action-register-device will only update the device token for the default profile. If you are using more than one profile, they will each have their own device_token set. Open your .okta_aws_login_config and update the device token for each profiles. Just copy it from the default profile. You could probably also run the --action-register-device with a profile flag, but I haven't tried that

thanks @nolan-m, copying device_token from default to other profiles is working fine now!