Tyler Smith#IT has assigned me a 'yubikey' for MFA. Setting it up requires I use a temporary access pass. The email with my temporary access pass and instructions for setting up the yubikey is encrypted, and cannot be opened without the temporary access pass.
Stéphanie@plantarum Oh what, I was able to open it with my Entrust!
@stephanie Entrust has always been a bit sketchy for me. Definitely doesn't work on my Linux laptop, sometimes works on the Windows desktop in the lab.
Human 3500@plantarum I worked one contract where onboarding involved me calling the service desk. They took all my details to add me to the system so they could open a ticket to generate a password for my account.
Then they said they would call my phone and to not pick it up so that they could leave my new password on voicemail.
I had just given them that phone number.
At least the result of my story was that i had access unlike yourself.
Ross of Ottawa@plantarum just use your yubikey. đ
Eric Goodwin@plantarum weird⊠that shouldnât be encrypted. On-boarding emails with temporary passwords shouldnât either.
@plantarum should also be able to add yubikey using existing MFA. New accounts should be setup with Helpdesk in person if st all possible to help jump those hoops
@auxonic @plantarum Mine is also encrypted!
@stephanie @plantarum in GC context, and for existing users, that shouldnât be an issue but for on-boarding entrust often isnât setup/migrated
@auxonic @plantarum ah yes that's true for new computers
@auxonic I've received two encrypted emails in 15 years, both were login credentials đ€·
Kevin Bowrin â@plantarum To be fair, this is very secure. Like replacing your front door with a concrete wall.