-
Functional Test
-
Minor
-
None
-
Moodle 4.4
This is an exploratory test of a new feature or improvement, so please feel free to try anything you like and not just the test steps!
Prerequisites
- This test requires admin access and access to terminal to run CLI commands, as part of the testing will lock out a user from accessing the site.
- You will need a resource for testing SMS sending in AWS (if you are an HQ team member testing this, feel free to reach out to the Platform team who may be able to help with access to an AWS sandbox for testing).
Troubleshooting
IMPORTANT: If you locked yourself out, you can disable the whole MFA plugin from the CLI:
php admin/cli/cfg.php --component=tool_mfa --name=enabled --set=0
|
You can also reset user authentication factors:
- As admin go to Plugins > Multi-factor authentication > Reset user authentication factors
- Search by one user with authentication factors
- Click on button "Reset user factor"
Setup
- As admin go to Site administration > Plugins > Admin tools > Multi-factor authentication
- Enable the "MFA plugin enabled" setting and save changes.
SMS Sandbox setup
- Access to https://signin.aws.amazon.com with your credentials.
- From your AWS Console go to Amazon SNS / Mobile / Text messaging(SMS) and enable it.
- Include some "Sandbox destination phone numbers"
- From Security credentials: create a new Access keys for this and save the "Key", "Secret" and Region for the configuration in Moodle.
More information about SMS sandbox can be found
- https://aws.amazon.com/blogs/compute/introducing-the-sms-sandbox-for-amazon-sns/
- https://docs.aws.amazon.com/sns/latest/dg/sns-sms-sandbox-verifying-phone-numbers.html
- https://docs.aws.amazon.com/sns/latest/dg/sns-getting-started.html
Test third party libraries
- As admin, go to Site administration > Development > Third party libraries
- Verify that the library "AWS SDK for PHP" exist.
- Verify that the library "JMESPath" exist.
Test Mobile phone SMS Authentication:
- As admin go to Site administration > Admin tools > Multi-factor authentication > SMS Mobile phone
- Enable the factor and include the AWS credentials created before ("api_key", "api_secret", "api_region")
- Access to your user preferences > "Multi-factor authentication preferences"
- Set up "SMS Mobile phone" factor with a test phone number.
- Check you have received an SMS in your phone number
- Enter the code you received and continue.
- Check you see a success message that the factor has been set up.
- Open another browser and access to Moodle with your user
- Enter your username and password,
- Check a new screen will be display where it will ask for the Mobile phone SMS
- Check you have received an SMS in your mobile.
- Enter the code in the box and click on "Continue" if it has not already sent automatically.
- Check you have been login successfully and you have access to Moodle.
- is a QA test written for
-
MDL-78509 Add Multi-factor authentication (MFA) plugin
- Closed