General > General Technical Chat
2FA - pardon my ignorance...
(1/2) > >>
eti:
2FA, or "Two Factor Authentication" for Google; please pardon my ignorance, but the reason I've always disabled it, is due to not wanting to have to sign back in EVERY TIME I use Google services. Have I misunderstood how it works?

# Will a newly 2FA-signed-in device retain the login?

I can't think of the right phrases to Google, or I'd not be asking something so mundane; I am usually very self-sufficient, software-wise.

Many thanks.
ataradov:
2FA only comes into play at the same time when a normal 1FA. So you will not have to log in more than you already do.
eti:

--- Quote from: ataradov on July 07, 2021, 12:41:34 am ---2FA only comes into play at the same time when a normal 1FA. So you will not have to log in more than you already do.

--- End quote ---

Thank you mate!
sleemanj:
Maybe I can piggyback onto this thread actually.

I don't use 2FA because I see it as complicated and dangerous in that it's likely prone to me getting locked out, this is probably because I don't know what "good simple relatively universal device" exists.

I want something that...

  1. Works at least with Google

  2. Is not an app on a phone or a desktop, I do not carry or have a phone near me most times

  3. Is small that I can hang on my keychain preferably, or similar form to a credit card (like the old SecureID card I used 20 some years ago)

  4. Something that I can have at LEAST one, preferably two spares of, physically, just like spare keys, completely identical so that "it just works"

  5. Works (in authenticating) on all platforms and devices, so likely means, does not need to be plugged into USB to use it for authentication (but setup could)

2FA afficionados - does such a thing exist?

---

Edit to add:  Seems like Limor Fried has similar desires -  https://hackaday.com/2018/01/04/two-factor-authentication-with-the-esp8266/ - so I want something almost the same like that, but not DIY (I could DIY, but I'm not motivated enough to DIY).
ataradov:
I have not used any physical devices, since I'm generally more likely to have my phone with me. From what I understand, YubiKey is the most common solution. But that is USB or NFC. I don't think devices with a screen that cycles the numbers still exist and actively supported. Although I would get one if there were any.

Ability to enroll multiple devices depends on the service that uses 2FA. I can't tell for google, since I don't have any physical devices, and it is not clear if you can add multiples.

And as a backup, there are always recovery codes. I store them in a password manager, so chances are I have access to that if I need to log in into google from a new device and don't have the phone.

But also, I just checked in my profile: "2-Step Verification is ON since Aug 1, 2016". I have never had an issue where I could not login, so I guess I'm fine for now. Of course, it may backfire spectacularly one day.
Navigation
Message Index
Next page
There was an error while thanking
Thanking...

Go to full version
Powered by SMFPacks Advanced Attachments Uploader Mod