2 Factor Authentication

[map782]

Quote:

Originally Posted by walds11

I am sort of in the same boat So far, no one here has been able to help. I copied and pasted my recovery key then saved it in my notes. It’s not working though. I keep getting the “Invalid authentication code” error message when trying to disable 2FA on TRF (using the Google Authenticator app). I am stuck with using Tapatalk everywhere except for at home when on WiFi.

I feel your pain. Hopefully there is a fix.


Sent from my iPhone using Tapatalk

[LF1925]

Quote:

Originally Posted by walds11

I am sort of in the same boat No one here has been able to help. I copied and pasted my recovery key then saved it in my notes. It’s not working though. I keep getting the “Invalid authentication code” error message when trying to disable 2FA on TRF (using the Google Authenticator app). I am stuck with using Tapatalk everywhere except for at home when on WiFi.

Same boat here. New phone, new router. Didn’t think about 2FA and am stuck using TapaTalk as I blew it and didn’t either record the correct code and process to recover.


Sent from my iPhone using Tapatalk

[walds11]

Quote:

Originally Posted by LF1925

Same boat here. New phone, new router. Didn’t think about 2FA and am stuck using TapaTalk as I blew it and didn’t either record the correct code and process to recover.

Sent from my iPhone using Tapatalk

Glad but not glad that there are a few of us in this similar situation.

I am surprised that no one has a solution. And why can’t the TRF Admin turn off 2FA for us?

[rossi46]

2FA is the way to go

[cwilson13]

I am logged in now on ‘remember me’ but can’t remember my password.

I want to se up 2FA but need to log out and then log back in.

How do I reset my password once I log out?

[cop414]

User cp then settings and options then edit password.

[Uncle-AJ]

I changed my mobile phone and got blocked when trying to log in with a verification code. Fortunately I'd saved the recovery code. This has to be entered using the dashes and I'm now (obviously) back in. However I did struggle for quite a while and once your out, there seems to be no way back without that code. Nothing works, you can't even use the "Contact us" link.

[walds11]

Quote:

Originally Posted by Uncle-AJ

I changed my mobile phone and got blocked when trying to log in with a verification code. Fortunately I'd saved the recovery code. This has to be entered using the dashes and I'm now (obviously) back in. However I did struggle for quite a while and once your out, there seems to be no way back without that code. Nothing works, you can't even use the "Contact us" link.

I was in the same situation and saved my recovery code, but apparently didn’t save it correctly. I am stuck with using Tapatalk unless I am on my recognized home network WiFi.

[Uncle-AJ]

Quote:

Originally Posted by walds11

I was in the same situation and saved my recovery code, but apparently didn’t save it correctly. I am stuck with using Tapatalk unless I am on my recognized home network WiFi.

I feel for you. You would think there'd be another failsafe to stop people getting blocked from the forum. I'm in two minds whether to remove it now.

[walds11]

Quote:

Originally Posted by Uncle-AJ

I feel for you. You would think there'd be another failsafe to stop people getting blocked from the forum. I'm in two minds whether to remove it now.

You would think the TRF mods could disable 2FA in situations like these.

Anyway, at least I have the Tapatalk workaround, although I am not a big fan of the app.

[Uncle-AJ]

Quote:

Originally Posted by walds11

You would think the TRF mods could disable 2FA in situations like these.

Anyway, at least I have the Tapatalk workaround, although I am not a big fan of the app.

I did a quick Google search on the subject. The result would seem to be, if you lose your validation code, you lose your account. A bit drastic but it's because when 2-step verification is enabled, only you can can get access to your account.

[walds11]

Quote:

Originally Posted by Uncle-AJ

I did a quick Google search on the subject. The result would seem to be, if you lose your validation code, you lose your account. A bit drastic but it's because when 2-step verification is enabled, only you can can get access to your account.

Makes sense, but frustrating nonetheless.

[Uncle-AJ]

Quote:

Originally Posted by walds11

Makes sense, but frustrating nonetheless.

I've disabled mine now, I'm not taking anymore risks.

[ZOOK]

Quote:

Originally Posted by Uncle-AJ

I've disabled mine now, I'm not taking anymore risks.

Are you using Google Authenticator? If you are, move to Twilio Authy. Go up to the top of this thread and read about Authy.

[Uncle-AJ]

Quote:

Originally Posted by ZOOK

Are you using Google Authenticator? If you are, move to Twilio Authy. Go up to the top of this thread and read about Authy.

Thanks for that.

[Lol-x]

Quote:

Originally Posted by walds11

I was in the same situation and saved my recovery code, but apparently didn’t save it correctly. I am stuck with using Tapatalk unless I am on my recognized home network WiFi.

That then is your choice, as you could have engaged admin assistance to resolve the issue.

[walds11]

Quote:

Originally Posted by Lol-x

That then is your choice, as you could have engaged admin assistance to resolve the issue.

I just sent an inquiry via the contact us link. Thanks.

[IamJacky]

Just finished doing the set up, I am not 100% sure if it worked, but seeing that I can post here, it's all good...?

I browse TRF on my Macbook mostly and I do not use Tapatalk. I enabled the Two Factor Authentication by downloading the Authy App on my iPhone, I then went to User CP and enabled the TFA, then scanned the QR code with my iPhone using the Authy App. I then entered a 6 digit token number from the App into the "Validation Code" section of the User CP page. Now my User CP just says "Two Factor Authentication Enabled".

However, everytime I open up my Authy App on iPhone, it just keeps generating new 6 digit "token" numbers every 30 seconds, is this normal?

[cop414]

Yes, that’s what it’s supposed to do. When you’re attempting to sign in from a different IP you’ll need to put that code in. I always wait until a new code rolls so that I have the full 30 seconds to enter it in. Sounds like it’s working as it should.

[IamJacky]

Quote:

Originally Posted by cop414

Yes, that’s what it’s supposed to do. When you’re attempting to sign in from a different IP you’ll need to put that code in. I always wait until a new code rolls so that I have the full 30 seconds to enter it in. Sounds like it’s working as it should.

Ah I see how it works now; I am now at home and it is asking me to enter the 6 digit code. Got it now, thank you!

[cop414]

Quote:

Originally Posted by IamJacky

Ah I see how it works now; I am now at home and it is asking me to enter the 6 digit code. Got it now, thank you!

[LF1925]

Quote:

Originally Posted by walds11

I just sent an inquiry via the contact us link. Thanks.

Were you able to successfully retrieve? I’m stuck in 2FA purgatory via Tapatalk due to my carelessness as well when I updated my tech (phone, new network) and didn’t record correctly the backup codes.


Sent from my iPhone using Tapatalk

[walds11]

Quote:

Originally Posted by LF1925

Were you able to successfully retrieve? I’m stuck in 2FA purgatory via Tapatalk due to my carelessness as well when I updated my tech (phone, new network) and didn’t record correctly the backup codes.

Sent from my iPhone using Tapatalk

Yes, but after paying a $20 fee. Steve created a donor account, changed the details on that account and merged one account to the other so posts/history was maintained. This was all done behind the scenes. I was issued a new password, changed to my own password, downloaded the Authy 2FA app, activated 2FA and all good after that!

[LF1925]

Got it, thanks for the details. For $20 sounds like it’s well worth the price of admission.

[BDHD]

"Authy" worked without any issues. Downloaded and installed the app on iPhone, opened the app and scanned QR code shown on my Desktop computer, entered code provided by the app and Done. 2FA is now enabled

[brandrea]

Just enabled it myself. It’s typical of most apps I find ... easy once you do it twice

[subtona]

I commend you for trying to resolve the issues encountered here on the forum.
Sincere thank you.


Everything I can think of that has been used in the evolution of security has been compromised. We have now come to a new milestone, our personal cell phone number. I am concerned as our cell phone number becomes the it thing for security, (remember when it was your social security number/ mother’s maiden name / dogs name/ first girlfriend or car or mortgage etc) all of them have become unreliable forms of authentication by themselves. I am also very concerned that there is just as much of a security risk giving access to your 24/7 movements through the user data accessible by tracking our cell phones to third party apps in the business of selling our data.

I could go on and rant and rave but surely the guys with the butterfly nets will eventually have to take me away.

Ps Recently I was going to purchase a watch bracelet ~$400. I had entered all of my personal info along with credit card info...then a new to me step was introduced for an online purchase. I was being required to enter my cell phone number and receive a verification pin number to include to finalize purchase. I did not complete the purchase.

I receive several sales calls a day, many not in my language. It is to the point I don’t want to answer my own phone. My purchase of an inanimate object is not an invitation for a personal relationship from the seller or those strangers my information is sold to.

I know it is too little too late on the privacy front to reign this crap back in but for me the cell phone is just going too far. The cell phone is essential for my current job, I can’t leave the house without it. I am not trying to take countless strangers interested in marketing me as a product with me when I go for a walk.


Again Steve thank you for your efforts, certainly the new standard for security has become 2fa and you are keeping up with the standards. I am genuinely concerned about the vastness of privacy and security we are losing as tech evolves... each side chasing improvements in security while marketing is exploiting each and every intrusion and hackers dreaming of ways to go deeper.


I guess I did rant.... knock at the door appears to be the guys with nets, gotta go.

[emersm]

I have the Authy app. It works with Google, but I am not sure it is working for TRF. TRF says that 2 factor authentication is enabled, but when I log out and then log back in, there is no 2nd factor authentication. Any suggestions?

[ZOOK]

Quote:

Originally Posted by emersm

I have the Authy app. It works with Google, but I am not sure it is working for TRF. TRF says that 2 factor authentication is enabled, but when I log out and then log back in, there is no 2nd factor authentication. Any suggestions?

2FA won't kick in unless your IP address changes. Try turning off wi-fi on your cell phone so you are using cell data and then start your browser on your phone and log into TRF.

[cop414]

Quote:

Originally Posted by ZOOK

2FA won't kick in unless your IP address changes. Try turning off wi-fi on your cell phone so you are using cell data and then start your browser on your phone and log into TRF.

Correct.