rscal
Posts: 914
Likes: 503
|
Post by rscal on Jun 29, 2020 11:36:20 GMT
I hit the daily limit of telephone 2FA around 12 noon and asked AC about this. They can't unblock (it's managed externally) but they said my block would be reset around 18.00 (by my reckoning) If that's a fixed time each day for the platform (as opposed to the individual account holder) it would be useful to know about.
Any other experiences to report (MLA customers)?
|
|
jontyab
Member of DD Central
Posts: 116
Likes: 79
|
Post by jontyab on Jun 29, 2020 11:52:00 GMT
I wish AC would allow support a standard TOTP authenticator (MS, Google and many others) for those of us with many TOTP based 2FA systems to manage. It's not as it Authy is fundamentally different as they're using a variant of OTP and the seed can be extracted (see randomoracle.wordpress.com/2017/02/15/extracting-otp-seeds-from-authy/)Authy used to have some advantages in terms of backup and migration but now even Google authenticator allows easy transfer from device to device. I have the seeds for all my systems (and their QR code equivalents) securely stored so I can easily use PC and mobile devices applications to generate codes as required and no worry if a device fails as its easy to set up on another. I didn't follow that specific process so can't recommend it, but I've been using an extracted authy seed for AC from the beginning. Certain TOTP clients (I use Aegis) let you tweak the digit count and period to work correctly for Authy tokens (specifically 6 digits every 10 seconds). The only challenge is getting the seed - which is always going to be a fairly technical affair.
|
|