this post was submitted on 17 Jul 2023
15 points (85.7% liked)

Ask Lemmy

26753 readers
2107 users here now

A Fediverse community for open-ended, thought provoking questions

Please don't post about US Politics. If you need to do this, try !politicaldiscussion@lemmy.world


Rules: (interactive)


1) Be nice and; have funDoxxing, trolling, sealioning, racism, and toxicity are not welcomed in AskLemmy. Remember what your mother said: if you can't say something nice, don't say anything at all. In addition, the site-wide Lemmy.world terms of service also apply here. Please familiarize yourself with them


2) All posts must end with a '?'This is sort of like Jeopardy. Please phrase all post titles in the form of a proper question ending with ?


3) No spamPlease do not flood the community with nonsense. Actual suspected spammers will be banned on site. No astroturfing.


4) NSFW is okay, within reasonJust remember to tag posts with either a content warning or a [NSFW] tag. Overtly sexual posts are not allowed, please direct them to either !asklemmyafterdark@lemmy.world or !asklemmynsfw@lemmynsfw.com. NSFW comments should be restricted to posts tagged [NSFW].


5) This is not a support community.
It is not a place for 'how do I?', type questions. If you have any questions regarding the site itself or would like to report a community, please direct them to Lemmy.world Support or email info@lemmy.world. For other questions check our partnered communities list, or use the search function.


Reminder: The terms of service apply here too.

Partnered Communities:

Tech Support

No Stupid Questions

You Should Know

Reddit

Jokes

Ask Ouija


Logo design credit goes to: tubbadu


founded 1 year ago
MODERATORS
 

What’s your prefer two-factor authentication app for iOS?

I'm looking for an app that offers the best combination of platform compatibility (preferably available on Mac OS, iPad OS, and iOS), security, usability, and reliability.

It would be great if the app is open source and has a backup feature as well.

I came across a recent Wirecutter article from The New York Timesthat recommends Cisco DUO Mobile as the top choice, followed by Authy and Google Authenticator.

I would greatly appreciate your insights and security perspectives.

Thank you

all 30 comments
sorted by: hot top controversial new old
[–] domint@feddit.de 22 points 1 year ago

I use the totp generator included in Bitwarden. It would be more secure to have codes and passwords in different apps, but in Bitwardens case I don’t have a too bad feeling about it.

[–] totallynotarobot@lemmy.world 10 points 1 year ago

Never had trouble with Authy. Use it on iOS and android, and it’s straightforward and reliable, including when switching/setting up new devices.

That being said, no app can save you if you don’t have paper backups of those we codes. Stash em in your safe.

[–] Established_Trial@lemm.ee 8 points 1 year ago (2 children)

I’ve been using the one in 1Password. The main downside is it’s annoying to add a otp into the app if you can’t scan the QR code. I did most of my websites with my iPad and my phone.

[–] petercockroach@lemmy.world 2 points 1 year ago (1 children)

Using 1Password kinda defeats the purpose of 2FA though. If someone steals your one password, they can access all of your passwords and your authenticator.

[–] ivenoidea@lemmy.world 4 points 1 year ago (1 children)

They‘d have to steal your master password and a 2FA code.

[–] petercockroach@lemmy.world 1 points 1 year ago (1 children)

That’s if you’ve gone through the steps of setting up 2FA for 1Password as well, and at that point you either need another app or access to a text

[–] Established_Trial@lemm.ee 3 points 1 year ago

I do have an app set up just for 1Password 2fa. Also, when you sign into a new device with 1Password you need:

The password 2fa code Additional “Secret Key” that is account specific that you can only get by logging into 1Password from a trusted device and “adding new device”

At that point, if they get in, they either really want my info or I’m being held at gunpoint.

[–] ultratiem@lemmy.world 5 points 1 year ago (1 children)

Cisco Duo Mobile is nobodies top choice, anywhere lol.

1Password, Last Pass and Apple’s own iCloud Keychain are probably the best of the bunch.

Here a good curated list: https://www.imore.com/best-password-manager-apps-iphone

[–] joel_anderson@lemmy.world 0 points 1 year ago

Unless you are a bank or credit union. Then you just love duo for some reason.

[–] eofs@sopuli.xyz 4 points 1 year ago

I’m using Raivo. It’s open source, supports iCloud sync (useful if you have multiple devices) and allows you to export and import the keys which is handy if you need to change your device and you don’t use iCloud synchronization.

You can also set custom icons for the tokens to easily identity different services.

I switched from mattrubin/Authenticator which worked fine too but the development slowed down. Not that simple OTP would require constant development. I just wanted to make sure that the app would work even if Apple releases new major iOS version.

Raivo has worked without any issues and I can highly recommend it 👍

[–] MKBandit@lemmy.world 4 points 1 year ago

Bitwarden Pro

[–] QuarterSwede@lemmy.world 3 points 1 year ago

The built in one in Settings > Passwords. Automatically autofills in the field. Passkeys are the only thing that’s easier.

[–] ohlaph@lemmy.world 2 points 1 year ago

I have used Duo for work for the past 5 years. I have never had any issues.

[–] cccc@lemmy.world 2 points 1 year ago (1 children)

I use Tofu. It does exactly what it should and nothing more.

[–] ndx@lemmy.ml 2 points 1 year ago (1 children)

I use tofu too

Just so you know it’s also an iOS / iPadOS/ Mac system feature if you use safari no need for an app. Just open the password manager and add the otp code. Syncs with iCloud on all your devices.

[–] cccc@lemmy.world 1 points 1 year ago

Ah didn’t know that. The phone is the only Apple device I use so there’s probably a heap of tips and tricks I’m in the dark about.

[–] Steinawitz@kbin.social 1 points 1 year ago

SAAS Pass.

I like that it backs up to iCloud.

[–] hoodlem@hoodlem.me 1 points 1 year ago (2 children)

I use Google Authenticator, but as I am not in favor of big tech I am very open to using another option.

[–] CorrodedCranium@lemmy.fmhy.ml 3 points 1 year ago (1 children)

Google Authenticator is good. The only downside can be keeping multiple phones so you have a backup. I don't know if there's something similar on iOS but on Android Aegis is an open source alternative that is compatible with Google Authenticator and lets you locally export your codes

[–] MKBandit@lemmy.world 1 points 1 year ago (1 children)

Google authenticator now backs up

[–] CorrodedCranium@lemmy.fmhy.ml 1 points 1 year ago (1 children)
[–] MKBandit@lemmy.world 1 points 1 year ago

No to your Google account

[–] jetsetdorito@lemmy.world 1 points 1 year ago

I like ente Auth. It shows you the next code too just in case the current is about to expire

[–] H2SO4@kbin.social 1 points 1 year ago

I use, and recommend, FreeOTP:
https://freeotp.github.io/

[–] SamsonSeinfelder@feddit.de 1 points 1 year ago

Native iOS auth/OTP Integration in passwords. No need for an additional app. It’s backed up in iCloud via keychain.

[–] Nothingwise@lemmy.world 1 points 1 year ago

Do yourself a favor and check out https://raivo-otp.com It’s FOSS, extremely easy to use, native, and customizable.

[–] CentrifugalChicken@lemm.ee 1 points 1 year ago

2FAS or raivo