The OTP protocol relies only on 1) the scan and 2) the server and the device generating codes agreeing on the time. So, if the codes do not agree, then carefully read the section on the TFA admin page where it shows you what the server thinks the time is.
Hi David,
Thank you for your reply.
I have enabled the 2fa plugin then rescan the QR code. then when logging in on incognito using the new OTP, the error shows again like this. Error: The one-time password (TFA code) you entered was incorrect. Do you think there something wrong on this message.
N.B. Getting your TFA app/device to generate the correct code depends upon a) you first setting it up by entering or scanning the code below into it, and b) upon your web-server and your TFA app/device agreeing upon the UTC time (within a minute or so). The current UTC time according to the server when this page loaded: 2020-01-24 10:44:54, and in the time-zone you have configured in your WordPress settings: 2020-01-24 11:44:54
Regards,
Mariah
That time is 10 minutes out from the time that you posted, so that would appear to be the problem. You should speak to the server administrator to ask him to correct the server time. The standard OTP protocol requires accurate time, so that the server and the device can both agree with each other without communicating.
