Two-Factor Authentication¶
Enter verification codes when SSH servers require additional authentication.
How It Works¶
When connecting to a server that requires two-factor authentication:
- StormTunnel establishes the initial connection
- Server requests a verification code
- A secure input dialog appears
- Enter your code and click Submit
- Connection completes if the code is valid
Entering Codes¶
When prompted:
- Check your authenticator app or wait for SMS/email
- Enter the code in the secure input field
- Click Submit or press Enter
To cancel, click Cancel or press Esc.
Code Expiration
Most codes expire in 30 seconds. Enter promptly for best results.
Supported Methods¶
| Method | Description |
|---|---|
| TOTP | Time-based codes from authenticator apps (Google Authenticator, Authy, 1Password) |
| SMS | Codes sent via text message |
| Codes sent to your email | |
| Hardware tokens | YubiKey and similar devices |
StormTunnel displays whatever prompt your server sends, so custom 2FA methods are also supported.
Security¶
- Masked input - Code characters are hidden during entry
- No storage - Codes are never saved to disk
- Session-specific - Each code applies only to the current connection
Troubleshooting¶
Invalid Code¶
- Check you're using the current code (not an old one)
- Verify your device clock is synchronized
- Try the next code if using TOTP
Code Expired¶
- Wait for a fresh code
- Enter it immediately when the prompt appears
Connection Lost During 2FA¶
- Reconnect to the tunnel
- Complete 2FA when prompted again
Server Not Accepting Code¶
- Verify the correct 2FA method for this server
- Check if backup codes are available
- Contact your server administrator
Related¶
- Authentication - SSH authentication options
- Connection Testing - Test tunnel connectivity
- Troubleshooting - General troubleshooting