So I would like to transition from Google’s 2FA app to my apex but I’d like to clarify some things:
If the apex dies (), the only way to recover said accounts is to have those annoying codes they give you when you create the 2FA that you have to write down somewhere which kinda defeats the point, right?
The process to get my 2FA code when I want to login is to open the apex app, scan the tag, tap “Security Key”, copy the code?
Is it worth it to take a day and transfer everything or is 2FA going to become irrelevant in the very near future? I see GitHub now requires it so I assume it’s not going anywhere anytime soon…
yes those codes are one option but also copy your actual otp key / QR and store that just as securely as you would your backup codes… preferably offline on paper. Then you can import those keys to any new apex or app easily.
yep
see #1… if you don’t have backups of your otp keys then it’s worth doing this. I did when I had to update my otp applet on my apex and it was worth doing just to have key backups on paper.
A lot of apps such as Gmail are using Fido2/Passkeys. You don’t even need to use an authenticator app with codes on a lot of apps. You can just tap your tag, ring, or key via nfc and log in.
I recommend getting a backup if your switching your authenticator. A Cybernetic ring or maybe a Yubikey. That way if your tag is broken or lost, you still have another way to authenticate.
Yeah, that should be sufficient. I think I’m just hung up on hardware backups because I use Yubikeys for several other functions such as GPG and SSH keys.
), the only way to recover said accounts is to have those annoying codes they give you when you create the 2FA that you have to write down somewhere which kinda defeats the point, right?