4-5 TOTP apps? So far, when, e.g. Microsoft or Google have insisted use of their own Authenticator app is required, it’s worked fine for me using Ente Auth or similar just by entering the code / QR.
Comment on Bitwarden has launched a new authenticator app
Coreidan@lemmy.world 2 months ago
Jesus fuck. How many more authentication apps do we need that all do the same thing?
At work I need at least 4-5 different authentication apps because every customer has something different.
We don’t need another.
dave@feddit.uk 2 months ago
sugar_in_your_tea@sh.itjust.works 2 months ago
Yup, most 2FA is just TOTP, which is a pretty simple, open standard and is hardware independent. All you need is a key (the QR code or the numbers) and access to a reliable time source and bob’s your uncle.
million@lemmy.world 2 months ago
This even works with some apps that hide the standard part - like Symantec VIP - it’s possible to extract what they are doing and use a standard TOTP app instead of VIP.
blazeknave@lemmy.world 2 months ago
Random number generator 2fa?
vividspecter@lemm.ee 2 months ago
You only need one app, as long as the totp is implemented in a standardized way.
0x0@programming.dev 2 months ago
Microsoft products would like a chat…
Scrollone@feddit.it 2 months ago
I use my Microsoft account with a standard OTP app, you don’t need their own app.
rolling_resistance@lemmy.world 2 months ago
Wait until your workplace requires you to only use MS Authenticator push notifications 😭 and HOTP occasionally…
0x0@programming.dev 2 months ago
I did too until it kept rejecting my tokens frequently - changing to M$ Authenticator “solved” it.
sugar_in_your_tea@sh.itjust.works 2 months ago
They’re probably using HOTP or something else, not TOTP. TOTP is literally just the key + any clock. Or maybe it’s the “click button to authenticate” and not the “enter code to authenticate,” which might not be HOTP or TOTP, but something else entirely (e.g. Steam’s system is neither AFAIK).
If it’s TOTP, you just need to get the key and can use any authenticator app.
JustARegularNerd@lemmy.world 2 months ago
They did. DUO was born.
pitninja@lemmy.ml 2 months ago
From a security perspective, it’s not a great idea to put 2 factor tokens together with your passwords. You effectively eliminate the security benefit that 2 factor provides if you do because if people get into your password manager, they have everything they need to access your accounts. The only people it helps having it all in one app are people who don’t understand the purpose of 2 factor and just see it as an inconvenience when services force it on them. I’m not sure that I’ll be changing from Aegis to BitWarden’s stand-alone authenticator, though, because Aegis is doing its job nicely.