Feature Request: Cockpit TOTP/2FA #356
Description
If I remember correctly, it gets a little complicated with a google_authenticator package, and edits to PAM configs; it would also need to know the user's 2FA string ahead of time, like the password, to enable first time login, so there's also some effect to the setup UX.
I personally think it's still worth it.
Looks like there's some work towards supporting passkeys in the web login, but it's going to be a while before that's available.