Adam Hall 🇳🇿🇺🇸 
What is your fav and/or recommended Authenticator App?
Looking for some data for a security article, please boost and vote, much appreciated!
Google Authenticator
Twilio Authy
Microsoft Authenticator
Other (please reply)
Poll ended at .
For those saying 1Password … I am a big fan, it’s my password manager of choice. But it doesn’t have a generic QR code feature? Or am I missing something? How would I use it with [any random site]?
Aha. It’s buried under “Add More” when you edit an item.
Hmmm, is having my passwords and auth codes all in one place Good or Bad?
#ItDepends I’m sure 😂
Chris Huff 
@Adman yeah, I think it goes with your risk tolerance and capability. Like for me I think it violates the concept of MFA - someone gets my vault and it’s game over. But I’d rather someone use this than no MFA or just text messages…
@Adman then again, you could make a similar argument about SSO in some ways. So I dunno. ¯\_(ツ)_/¯
@kcappleguy but most SSO has a step up option … but yeah, hard to judge the line, so many permutations and considerations 😂
@Adman yeah so this is why in the end I believe in KISS - keep it the right level of simple for the person in question.
@Adman it’s evolving too - as we trend towards passkeys, and work with ones stored and backed by credential tools in iOS, 1Password, etc - we have to be cognizant of the security of said keys.
@kcappleguy what a great problem we would have if everyone used a password manager and code level 2FA and we were having a “oh that’s a good start” conversation. Getting from zero to something is the goal!
@Adman ain’t that the truth!
unicorndeburgh@Adman I'm keeping my password manager and 2FA separate.
JT@Adman I have one more piece of the puzzle for you..
I keep passwords in 1Password. I keep auth codes in Authy (as it is the easiest to move when changing phones).
Where do you keep 'backup codes' (in case you can't access Authy)?
If you keep them as a secure note in 1Password we are back to a single point of failure.
Best I can come up with is a text file in OneDrive?? But that feels off.
Sorry, I don't have a good answer. : )
@turtleonabike my wife and I keep our recovery access in alternate vaults. I mean we have that trust level, YMMV 😂
@Adman Yep, that is a good idea... except we already share the one vault :)
ajuanjojjj@turtleonabike @Adman I keep mines on an encrypted zip on my usual backed up places, with its password on my usual pw manager
Probably not perfect, but the idea is "somewhat accesible but not much", since they shouldn't be needed :P
@Adman hmm I swear it does, but I purposely keep my passwords and MFA separate. Lemme see….
@kcappleguy thank you. Seems rather buried 🤷♂️
But really not sure I want this together.
@kcappleguy I found it. Buried in the item edit menu under Add More.
I also have that “all in one” uncertainty. You compromised 1Password you get my passwords but without my 2/MFA it’s limited in value
Wendy Nather@Adman Duo, of course 💚
@wendynather I was torn between Duo and Twilio in the list :)
localzuk@Adman Bitwarden
Amy D 
@Adman iOS has it built in to the OS and and will pop up you 2fA code when it's needed without opening an app.
Islander@Adman FreeOTP. It's simple to use, simple to add new accounts and works really well. It's my go to app and one I recommend frequently.
ColdPathologist@Adman built-in authenticator in bitwarden, and authy for redundancy (by scanning the same QR code with both apps)
Christian Grobmeier
Jeremy Nickurak@Adman hand-made shell script that uses oathtool and gpg 🤓
madcap 
@Adman andOTP
Jehan Alvani@Adman 1Password for consumer. Includes password management as a nice bonus.
Okta + Okta Verify in more complete identity management contexts though.
I❤KITTENS@Adman Free and open source Aegis Authenticator.
B59R
m3enzo@Adman Raivo on iOS
Ian Robinson@Adman 1Password.
Toby@Adman I use 1Password
Alastair Bor 🇦🇺@Adman 1Password
Edmund Miller@Adman
Bitwarden
Bitwarden
Simon Wolf@Adman I use 1Password since it is accessible on multiple devices (and I already use it for passwords and secure notes). It’s not as secure a way as having a separate authenticator (and I’m thinking about trying Yubikeys) but the convenience and peace of mind that it is all recoverable/synched is a decent trade-off.
@simon convenience and getting people to actually USE security should not be undervalued :)
Luke Nelson@Adman LastPass Authenticator. It works really well with LastPass, backing up to my vault and logging me in with a push notification. I think if I didn’t have LastPass I’d still be using Google Authenticator.
Don McAllister@Adman 1password
Ben Tsai
schnittchen 🏳️🌈 🔜 GPN, FSCK@Adman FreeOTP+ on Android and KeePassXC on the laptop.
FreeOTP+ allows me to scan the QR then export
@Adman I switched to Aegis after realising how much Google stuff I used :P
Brendan@TapForms 🇨🇦@Adman I'm moving away from Google Authenticator and switching 2FA to Safari's built in system. Way more convenient for me. And you can just right click on a QR code to add it. Also if the service supports passkeys I'll use that.
Nicholas Weaver@Adman Physical security keys.
Robert@Adman 1Password has 1TP authentication built in, which makes it very convenient.
captgoodhope@Adman 2Stable Authenticator
Phil Ruppert
Step Two
Step Two is a beautiful, modern two-step verification app. Its friendly and intuitive design makes two-step verification easy to use. It comes with a Safari extension so you can sign in to your accounts fast while keeping them more secure. And with iCloud, your two-step codes are automatically backe…
Kyle 
@Adman I use Authy and haven’t had any issues with it.
MysticalSeeker@Adman
1password. And it can generate codes
1password. And it can generate codes
Oz Lubling@Adman 1Password
murph@Adman Aegis.
IthanulKinda of a variety, I have to deal with Microsoft Authenticator + RSA Token for my work acct. Personal though, its a mix depending on acct, higher value accts I smack more layers on those. So, basically a mix of Keepass 2 + Yubikey, plus for some with extra 2FA + pin + a different Yubikey on top for certain accts as well.
Mike (no not that one)@Adman I am fond of FreeOTP+ for personal use, and Duo Mobile for business use.
Slim Bill (He/Him)@Adman I had to port Microsoft Authenticator to a new phone ... The process was a bit too complex for me ... I had to re-establish my LinkedIn I'd - which took four business days.
I'm not quite a newbie at IT ... My first job in IT was January 1974.
I removed Microsoft Authenticator from everything.
I'm not quite a newbie at IT ... My first job in IT was January 1974.
I removed Microsoft Authenticator from everything.
@wjmalik yeah the restore mode works quite well but that assumes you have the backup and understand the process :)
orrju1Password
Josh Combs@Adman Raivo on iOS
Kaladin 🧑🦽💨
BirderScott
luizbrasil@Adman 1Password