I am unable to login to my sandbox account. I am also unable to reset using my recovery key. I am also the admin of the account so I am completely locked out of the system. I am trying to develop an integration with you all and this is a blocker for me.
Any help would be greatly appreciated!
Hello Tim, Iāve resetted the 2FA for your Sandbox Workspace. Please log into the Sandbox: Fireblocks Console using your Google Auth method.
1 Like
After resetting my 2FA I was able to login, but now I am in the same situation and locked out of my sandbox account. How can I resolve this? Should I not use google Oauth? This is making it very hard to integrate with you all.
@Sagar if you could please assist in resolving this I would be very appreciative!
Hi Timothy,
I can see that your user role is set as NON_SIGNING_ADMIN and your login method is configured via Google login.
After the 2FA reset, we believe you reconfigured 2FA using an authenticator app, as outlined [here].
Could you please share a screenshot of the login error? This will help us determine whether the issue is related to the login method or the 2FA step.
Yes I have been using google authenticator for 2FA since signing up with fireblocks. Here is a screenshot of the ui.
This request https://auth.fireblocks.io/oauth/token is throwing this error: {āerrorā:āinvalid_grantā,āerror_descriptionā:āInvalid otp_code.ā} when I try to login
Hi Timothy,
Thanks for sharing. Could you also confirm that you click on the āSign in with Googleā method, select your Google login account, and key in the 2FA code from the correct authenticator configured for ātim@navalabs.aiā?
Yes I confirm that I am using the Sign in with Google option and select my Google login account. I am also confirming that I am using the correct key. This is the same error I was experiencing before you reset my 2FA which temporarily allowed me to sign in before the issue happened again 
Hi Timothy,
We have reset your 2FA again. You can now try to re-configure your 2FA following the article here and try to complete the user setup.
Please keep me posted on any further observations.
Are you sure that you reset my 2FA? I get the exact same behavior and am not prompted to re-configure my 2FA. I am also unable to use the recovery key to reset the authenticator. This is becoming a blocker for us.
Will you just delete my account and allow me to recreate the account? Are other 2FA less problematic?
ātim@navalabs.ai Hi, I have a doubt that you are not using sandbox as we see 2FA errors on prod auth0 instead of sandbox.
Can we login to āFireblocks Console and share a full screenshot please?
Sure here is a screenshot. I tried both production and sandbox environments last week hoping one would work.
As you can see from the screenshot the session starts but then a 401 error is thrown from https://sb-console-api.fireblocks.io/issue_device_pairing_token. It is not throwing an error saying that I provided an incorrect code.
I have tried multiple emails and receive similar errors. When I tried with a personal email I received a 403 forbidden from the start_session endpoint.
Also had a team member try to log in and he ran into the same error
Hi Tim,
By any chance you are available for a quick meet? It would be easier to do over a call.
Hey yep Iām available for the next 30 minutes. Or available tomorrow starting at 13:00 GMT (7 AM Mountain). Please send a calendar invite whenever you are available
Hi Tim,
Sorry, we made some changes quickly again. Few things first,
Please do not login to Production as it will not work - we still see the tries.
Please login to Fireblocks Console
Initially ti****@na .ai email id was mentioned, but it seems you are trying with ti***@dig******.tech.
We have fixed both accounts, so it should work now.
If this is still failing, please share the exact email ID that you used to log in (we should use only Google logins, as they are the ones linked).
Let me know how this goes, thanks.
Hi Rajkumar,
Yes I also tried using a different email account with hopes that I might have better luck. I was unable to login with either account.
I just tried logging in with ti****@na .ai and I am continuing to run into issues. Again I also had a team member try to login as well and he ran into the same issue. His email is under the same domain as mine.
An error is thrown when the following request is made
https://fireblocks-sandbox.us.auth0.com/oauth/token
Body:
{
"grant_type": "http://auth0.com/oauth/grant-type/mfa-otp",
"client_id": "A...n",
"audience": "https://sb-console-api.fireblocks.io",
"mfa_token": null,
"otp": "111111",
"scope": "offline_access"
}
Response:
{
"error": "invalid_request",
"error_description": "Missing required parameter: mfa_token"
}
As you can see the mfa_token is not being passed to the request which is throwing an error. I hope this can be helpful! Imo this seems like a bug in your authentication flow.
Please let me know if I can provide any other information. Again, the email I want to use to login is ti****@na .ai . I am also very open to work arounds if there are any. In the end I am just trying to build an integration with your service.
We tried to reproduce and everything is working perfectly with different ids - So, I will see if I can get someone from US timezone can help with this issue. Thanks for sharing the error.