Hi there! I use Duo Security as a 2FA single-use password generator for Cloudflare. It has worked flawlessly ever since I’ve configured it… until today I upgraded my iPhone to a more recent model. While the Duo application correctly identifies that I use it for Cloudflare, since the original configuration was tied to the older iPhone, the new one requires a new confirmation/registration.
But CloudFlare, to allow any changes/modifications of the 2FA device/system that is tied to the account, needs some extra authentication… from the original device/system used to set it up on the first place… which sort of makes sense… unless, of course, you don’t have it any more!
So how can this apparent paradox be solved?
Other applications give alternative options to ‘reset’ the 2FA system in use, such as providing a QR code to scan, or a special sequence of numbers to reset the app used to generate the single-use code combination. But sadly Cloudflare doesn’t have any such choice on their backoffice…