diff --git a/app/models/concerns/user_otp_methods.rb b/app/models/concerns/user_otp_methods.rb
index b2d5dc77fbc..a8fe697f86a 100644
--- a/app/models/concerns/user_otp_methods.rb
+++ b/app/models/concerns/user_otp_methods.rb
@@ -15,7 +15,7 @@ def create_direct_otp
   end
 
   def generate_totp_secret
-    ROTP::Base32.random_base32(16)
+    ROTP::Base32.random(20)
   end
 
   def authenticate_direct_otp(code)
diff --git a/spec/models/user_spec.rb b/spec/models/user_spec.rb
index 19df29f3ccc..7f764d42287 100644
--- a/spec/models/user_spec.rb
+++ b/spec/models/user_spec.rb
@@ -287,7 +287,7 @@
     it 'generates a secret 16 characters long' do
       user = build(:user)
       secret = user.generate_totp_secret
-      expect(secret.length).to eq 16
+      expect(secret.length).to eq 32
     end
   end