However, those who synced their desktop apps with the mobile versions have discovered that some of their tokens did not correctly synchronize, making their associate accounts inaccessible.
Lol
Well that fucking sucks.
Yeah, laughing at the customers (who were making a good decision to make sure they had 2FA enabled) is kind of a dick move.
But from the perspective of the company fucking up that bad it’s funny.
I use their phone app. I sure have a weekend chore to get the fuck off that app.
Yeah, I told everyone at my company about it 2 months ago. I moved everything to bit warden.
I hope you all freed your 2fa secrets from this un-service.
What are some good multi-platform alternatives/ replacements?
I switched to Aegis
I switched to Aegis when google authenticator didn’t allow exports. It’s simple and it works.
Wait, google auth doesnt allow exports? For me it dies…? Am I missing something…?
Bitwarden or Proton Pass.
Keepass. Standalone FOSS apps for desktop/phone. Has OTP support.
Password/tokens are stored in a small encrypted db file you can copy/paste anywhere you need it. Has hundreds of plugins to do various things.
Use something like syncthing/nextcloud/onedrive to keep the file in sync across devices.
I like using bitwarden, the selfhosted vaultwarden server stores it with passwords and makes codes available in the app / browser extension. I also keep them backed up on a nas and synced off-site just in case.
andOTP + bitwarden for me
AndOTP is great. Its free and had simple and easy encrypted backups. I love how its timer counts down, not up like some others and highlights the token in red so you know you need to hustle or wait.
Duo, Aegis, Bitwarden, Proton.
I use KeePassXC and a Yubikey 5. You can store a certain number of 2fa on the key but i also back up the secret key and recovery codes on KeePassXC which is backed up on my Nextcloud. When using the Yubikey there is an app on desktop and mobile that reads they key but doesn’t store the codes. Open the app, plug in the key, the TOTP appears, take the key out and the TOTP is gone.
A lot of password managers support 2fa now. I use Enpass because I got a lifetime license a long time ago (it’s also available to people with Google Play pass), but I know some other popular options have it too.
The whole point of 2FA is to keep the second factor separate from the first. If you store both in the same password manager app that defeats the entire point of 2FA.
It still protects you from your passwords being compromised in any way except through a compromise of the password manager itself. Yes, it’s worse than keeping them separate, but it’s also still much better than not having 2fa at all.
I switched to Ente Auth some time ago when bad news about authy started getting out
I used Authy a couple years ago, do I need to be worried?
Whoa