Requirements: CoreSSH Server, Proton Pass

Introduction

This guide walks through configuring Proton Pass as the 2FA app for a CoreSSH Server user account. Before starting, make sure 2FA is enabled for the user. See Getting Started with 2FA for instructions.

Add the TOTP secret in Proton Pass

Open Proton Pass and create a new login entry or edit an existing one. Scroll to the Two-factor authentication (2FA) section and click the Add button.

Enter the secret key

Copy the secret key displayed in the CoreSSH Server admin console and paste it into the TOTP field in Proton Pass. On mobile, you can tap the camera icon to scan the QR Code directly instead.

Click Save to store the entry. Proton Pass will begin generating six-digit codes for this account.

Verify the setup

Open Proton Pass and locate the CoreSSH Server entry. A six-digit code will be displayed and refreshes every 30 seconds. Use this code when prompted during SFTP login.

To confirm the setup is working, connect to CoreSSH Server using an SFTP client. After entering your password, CoreSSH Server will prompt for a one-time passcode. Enter the code shown in Proton Pass.