zlacker

[parent] [thread] 4 comments
1. freedo+(OP)[view] [source] 2022-01-28 00:42:33
The frustrating thing to me is that as a user they don't give us any tools to help ourselves. I would gladly make it a "team" account and login individually if we could. I would gladly do a shared TOTP, or whitelist login locations, or anything like that. Or at least give us the option to accept the risk and disable whatever anomaly detection they are applying. But no, that's not how the software world works anymore. Extreme paternalism mode is the only option as a user.
replies(2): >>throwa+Nj >>blackr+Jq
2. throwa+Nj[view] [source] 2022-01-28 03:40:17
>>freedo+(OP)
Why do you need to all access the same account though? Can't you grant access to whatever resource you need to multiple accounts?
replies(1): >>freedo+Ld2
3. blackr+Jq[view] [source] 2022-01-28 05:11:47
>>freedo+(OP)
Why don't you share a TOTP between all of you? Just take a screenshot of the authenticator QR code, or save it to a shared 1password secret.

Google's login protection mechanisms seem to be satisfied by TOTP usage, and you won't be locked out anymore (or at least much less likely to be).

replies(1): >>freedo+Sn3
◧◩
4. freedo+Ld2[view] [source] [discussion] 2022-01-28 17:35:49
>>throwa+Nj
For some of them we can, for others no. Sadly it seems as though supporting this sort of thing is not a priority for most SaaS
◧◩
5. freedo+Sn3[view] [source] [discussion] 2022-01-29 00:04:45
>>blackr+Jq
You're right that would totally work with Google. In our case the boss is quite computer illiterate and trying to get him to use LastPass was hard enough. He will tolerate a lot of pain from getting locked out before he'll be willing to learn TOTP :-(

And for many of the SaaS that we use, TOTP doesn't help you avoid the security lock outs.

[go to top]