I just switched to Authenticator Pro from Authy and I’ve been very pleased. It took some time to get my codes transferred over, but now I have android wear support, night mode, and my codes aren’t held hostage by Twilio!
AndOTP Foss and all things I want (encrypted backups,qr etc)
I use bitwarden for 99% of my 2FA. The rest goes into both Google Auth and Authy.
I use bitwarden for all but it’s protected by a yubikey.
Ironically Bitwarden is why I want a Yubikey
This is the way to go! Bitwarden’s authenticator is just so smoothly integrated into the login process - Ctrl-Shift-L to login, them Ctrl-V to paste the code.
I use yubikeys wherever they’re available and I use Aegis for the rare TOTP I don’t store in Bitwarden.
Been looking into getting a yubikey recently and just can’t bring myself to bite the bullet.
If you can catch a good sale, they’re more affordable .I picked up two for about US$45 for their “May the Fourth” one-day sale in 2022.
Now that’s a price I can get behind. I think they are $55 for 1 of the series 5 right now. I debated just getting a security key version for $25 but I know I’ll just end up getting the higher tier later because I don’t really understand them and how they work.
Oh, didn’t know bitwarden also managed 2FA, could’ve saved the space from using authy. Is that a (somewhat) new feature or is it just me being blind and missing it?
It’s super hard to find. I just now learned about this too. https://bitwarden.com/help/authenticator-keys/
Welp… time to move everything from authy to bitwarden looks like
It’s not as obvious as the other apps for sure and requires the premium subscription which is like 10 bucks a year. Was an instant buy for me when I switched over. When you auto fill a login it will automatically copy your 2FA key to quick paste into the box. I love it.
That does sounds nice, but on the other hand… i do like free stuff, instead of paying for subscriptions…
Yeah I don’t disagree but $10 a year is well worth it imo. Plus it keeps all your passwords and 2FA in one easy place.
So you store the TOTP for Bitwarden in one of the other apps?
I use Bitwarden for 2FA and the Bitwarden TOTP is in Aegis (I switched there from Authy after seeing a mention of it yesterday - never liked that it’s near impossible to get the tokens back out of Authy, but Bitwarden is the only thing I use it for). Actually the Bitwarden code is in Bitwarden too 😉.
I don’t particularly like that the passwords and TOTP are stored together, but it makes things much more convenient.
Both actually because Bitwarden is to important to me to trust one service lol
I like Aegis being FOSS and for it’s backup.
Keepass for passwords AND 2FA codes. It is really awesome to have them in one place.
I agree, but not very secure if Keepass is compromised. For security I think it’s better to separate passwords and MFA.
Aegis, simple, Foss, and has all the features I’d want (ex: biometrics).
Biometrics got me. One day it stopped working and I had forgotten the password since I wasn’t using it frequently.
Yeah I personally like having biometrics because it is very quick.
Aegis ftw
Aegis is FOSS and supports easy backup and restore. TOTP 2FA isn’t a very changing or proprietary technology so using open source options are easy.
Used andOTP but got discontinued, Aegis is the king now :)
deleted by creator
Keepass for passwords AND 2FA codes. It is really awesome to have them in one place.
Kind oft defeats the purpose a bit having the second factor in the same place as the first. But I’m doing the same.
Why? If service you using will be compromised password will be known. But 2FA isn’t, so it is useful.
When somebody somehow gets access to your Keepass Database.
meh, too unrealistic situation for most people and me 🙂
Never say never.
We are talking about MOST time, not never. So it is valid argument. It can happen but I would not protect from this, too small chance. But 2FA thing is always useful, so Keepass 2FA is way better solution than do not have it at all 🙂
Aegis user here ✌️ I’ve never had any issues since I started using it. Switched to it and Bitwarden after using LastPass for quite a bit. I know Bitwarden has 2FA but I haven’t decided if I want premium yet or not.
I actually have Bitwarden premium, which I subscribe to because it costs very little and I like the service a lot. Would be super convenient to have codes pop up automatically, but I am wondering if it’s a good idea to store everything in one place. May eventually move over, but it is quite convenient to have the codes on Android Wear for now :)
Yup, that’s why I use Aegis with Bitwarden. I’d rather not put all my eggs in one basket.
I use Authy, but these comments are going to make me check out Authenticator Pro, especially since I see its backup story on the main page, and it supports sha256, which Authy does not (and enabling current Lemmy 2fa silently fails).
A lot of people like Aegis. I just keep it all in VaultWarden because I’m lazy and it’s easier.
Using Authy. Pretty happy with it. It’s key feature for me has been the ability to easily restore if you lose, reset or upgrade your device, without having to mess around with your own backup and syncing.
Would suck to reset your phone and discover the sync had failed and the backup was not up to date.
I would like to have it on Wear OS though…
Authy is alright but I found myself increasingly uneasy. No major updates for a very long time and being owned by a giant security corporation, combined with the inability to export my codes, left me feeling like it was enshittification waiting to happen. I wanted dark mode and more control over the icons and organization too
Yeah. If it gets enshittified or sold to a dodgy company, I’d not hesitate to migrate.
Might bookmark this thread for if (when?) that time comes.
Authy does have dark mode as a toggle in the settings, btw. Not sure when that was added.
Yes, but doesn’t track with system
Aegis all the way, but I’m curious about Bitwarden’s offering. May check it out one of these days.
Authenticator Pro is quite good and looks beautiful with material theming. I’ve recently completed shifted to Proton Pass though, which is a complete E2EE password manager having support for 2FA as well. It’s synced with Firefox on my desktop and laptop.
Do you know if it’s possible to use Proton Pass just for 2FA or do I need to store my passwords there too?
You can use it just for 2FA if you want.
Authenticator Pro here too
Material You, Wear OS and auto backup is a game changer!