Solved Backup Devices for MFA


Haydon said:
Well, besides myself, there are 2 people on this thread who value a backup device for MFA. If one MFA device fails, then the other MFA device can still be used to access the site and edit the MFA specifics for the site if needed.

The first person uses phone and pc as his MFA devices. The second person uses phone and tablet as his MFA devices. I myself presently use 4 MFA devices, because unfortunately not all my (important) sites work with all my devices (and I want to have at least 2 MFA devices to work for each site as per the first paragraph)

It does not matter if you don't value a backup device for MFA, just don't use it. Some people don't value data backup either :eek:

Edit: ALL better sites provide MFA backup, SMS to mobile PLUS at least one other medium, usually PC- or tablet-based (such as backup codes) but also landline voice, etc. A site without MFA backup is one to be avoided, IMHO.

One more example: one of my most secure sites use a digital certificate that I store in my password manager, so password and MFA are very conveniently stored in one secure place. Of course the site works with SMS to mobile too. And upon login, the site lets me select which one of the two MFAs (SMS from phone or certificate from computer) I want to use that day. The site has in fact a 3rd MFA that I don't use, but I certainly would not use that important site if it had only 1 MFA!
Click to expand...
I rest my case. You still have not acknowledged that mfa with sites that only use codes sent to a number is useless if out and about unless you carry second phone.

The original post was not about best MFA but about usng a second phome.

No point in discussing anymore as you fail to acknowledge the limitations of using a second phone for sites thst only use codes to mobile.

Subject Closed.
 

My Computer My Computer

At a glance

Windows 11 Pro + Win11 Canary VM.I9 13th gen i9-13900H 2.60 GHZ16 GB solderedIntegrated Intel Iris XE
OS
Windows 11 Pro + Win11 Canary VM.
Computer type
Laptop
Manufacturer/Model
ASUS Zenbook 14
CPU
I9 13th gen i9-13900H 2.60 GHZ
Motherboard
Yep, Laptop has one.
Memory
16 GB soldered
Graphics Card(s)
Integrated Intel Iris XE
Sound Card
Realtek built in
Monitor(s) Displays
laptop OLED screen
Screen Resolution
2880x1800 touchscreen
Hard Drives
1 TB NVME SSD (only weakness is only one slot)
PSU
Internal + 65W thunderbolt USB4 charger
Case
Yep, got one
Cooling
Stella Artois (UK pint cans - 568 ml) - extra cost.
Keyboard
Built in UK keybd
Mouse
Bluetooth , wireless dongled, wired
Internet Speed
900 mbs (ethernet), wifi 6 typical 350-450 mb/s both up and down
Browser
Edge
Antivirus
Defender
Other Info
TPM 2.0, 2xUSB4 thunderbolt, 1xUsb3 (usb a), 1xUsb-c, hdmi out, 3.5 mm audio out/in combo, ASUS backlit trackpad (inc. switchable number pad)

Macrium Reflect Home V8
Office 365 Family (6 users each 1TB onedrive space)
Hyper-V (a vm runs almost as fast as my older laptop)
I have over 120 accounts in Bitwarden but only 6 accounts with 2FA in Authy. These are accounts with financial associations. My bank does not support MFA with a code but asks for passphrase in addition to the password. My tax account does the same thing but also requires a code provided from an automated telephone call (3FA).

The other Bitwarden entries are for forums, like this one, routers, IPTV etc., most that generally do not have or need MFA.
 

My Computer My Computer

At a glance

Windows 11 ProIntel Core Ultra16GBIntel(R) Arc Graphics
OS
Windows 11 Pro
Computer type
Laptop
Manufacturer/Model
ASUS Zenbook 14 OLED
CPU
Intel Core Ultra
Memory
16GB
Graphics Card(s)
Intel(R) Arc Graphics
Sound Card
Realtek High Definition Audio(SST)
Screen Resolution
2880 x 1800
Hard Drives
500 GB NVMe SSD
Internet Speed
1,500Mbps
Browser
Firefox, Edge
Antivirus
Windows Defender
Quandary said:
I have over 120 accounts in Bitwarden but only 6 accounts with 2FA in Authy. These are accounts with financial associations. My bank does not support MFA with a code but asks for passphrase in addition to the password. My tax account does the same thing but also requires a code provided from an automated telephone call (3FA).

The other Bitwarden entries are for forums, like this one, routers, IPTV etc., most that generally do not have or need MFA.
Click to expand...
If you use the term 3FA, then the term so used is from a site's perspective:

1st FA is always a password. But with increased need of security, there is ...

2nd FA which is often SMS. But if that fails, there is a need for ...

3rd FA to still be able to access the site, don't use a site that provides 2nd FA but not 3rd FA.

From a user's perspective, 2nd and 3rd can be many different combinations of FAs, hence I used the term MFA, Multi FA.

You use Authy with 2 devices. swerd uses Ubikey that you can stick in any general purpose computer. I presently use 4 devices. but as per post #15 I plan to reduce to 2 devices with each device being able to cover all 1st-2nd-3rd FA combinations. The 2 devices are the 'Backup Devices for MFA' as per thread title.

(Sorry, when it comes to security, I don't use proprietary hardware/software, it has to be open-source security software, it's personal preference, YMMV)
 

My Computer My Computer

At a glance

Windows 10 Pro
OS
Windows 10 Pro
You must log in or register to reply here.

Similar threads

Search indexing on backup device?
Replies
10
Views
2K
cbreemer
cbreemer
  • Article Article
October Pixel Drop: Helpful enhancements for your devices
Replies
0
Views
739
Brink
Brink
  • Article Article
Backup and Restore Clear Cloud Synced Settings from all Windows Backup Devices for Microsoft Account
Replies
0
Views
21K
Brink
Brink
  • Article Article
Nearby Share Beta app to share files between Android devices and Windows PCs
Replies
0
Views
1K
Brink
Brink
  • Article Article
Phone Turn On or Off Cross-device Copy and Paste for Android Mobile Devices in Windows 11
Replies
2
Views
32K
Brink
Brink

Latest Support Threads

Latest Tutorials

Back
Top Bottom