Authentication Setup Code for Member Security
A
Advisory Mink
With set up MFA, can the Authenticator app portion have a setup code as well to allow for that to be imported into password managers versus having to use a camera. Not all password managers have the ability to scan QR code inside a browser.
Chris Brisson
Thank you for posting, Advisory Mink! I have a few more questions for you:
- What specific password managers are you using that lack the ability to scan QR codes?
- How frequently do you anticipate needing to import the setup code into a password manager?
- Are there any other features related to MFA setup that you would find beneficial?
A
Advisory Mink
Chris Brisson
- The only password manager to be able to natively scan from an app is Keeper, but almost all of the password managers can allow MFA to be added by taking the set-up code and inputting into the password manager. Allowing the manager to manage the code.
- At every user set up.
- Being able to disable SMS as an MFA option, SMS can be hijacked fairly easily, providing an option to leverage hardware tokens like a Yubikey.
It could be mitigating these items if SSO Entra ID (Azure AD) was an option.