I’m setting up several different domains by importing a JSON configuration, and then modifying the database to customise for the domain.
Question: does it make sense to enable TOTP for the master admin user in the JSON? The OTP section contains a single ‘secretData’ value. Does this mean that the QR code for each domain will be identical, and the codes will be locked to each other? Or is the QR code randomised in some other way?
If the QR codes are all identical, would it be sufficient to modify the ‘secretData’ value in the database to make all the domains unique?
Thanks.