gershield.blogg.se - Lastpass two factor authentication setup

Android devices equipped with a USB-C port.

iOS devices equipped with a Lightning port.

iOS and Android devices that are NFC-enabled.

All major web browsers on Windows, Mac, and Linux computers equipped with a USB port.YubiKey works with all major web browsers on Windows, Mac, and Linux computers equipped with a USB port.LastPass only supports keymaps that are officially supported by Yubico.While you can add multiple YubiKeys to protect your LastPass vault, only the YubiKey in Slot 1 will be used for authentication when logging in to your vault in offline mode.LastPass uses the "YubiKey ID" to derive a key, which is used to apply an additional layer of encryption on the local copy of your vault data when you enable YubiKey as your multifactor authentication option for your vault.

Up to five (5) YubiKeys can be associated with each LastPass account.

The risk that my 1Password vaults will be compromised is extremely low (much much lower than the disaster with Lastpass), so I'm choosing convenience over this risk. Saving all of the mfa codes within 1Password, so putting all eggs in the same basket, is a risk I'm going to accept. And I will be able to set up any other devices from there. Then I will be able to sign in to my real Google account on my phone. Then I'm in and have access to all my credentials. Then I download the 1Password app and sign in with the emergency kit info from paper and the OTP from Google Authenticator. Then I download Google Authenticator and scan the 1Password mfa code from paper. On a fresh bought android phone, I login to a temporary freshly created Google account (I don't have any passwords memorized!). To recover my accounts from zero, I get the paper prints of my emergency kit and mfa qr code. So I printed the 1Password mfa QR code on paper. You might have not noticed it yet, but it's possible to scan these mfa QR codes into multiple authenticator apps. That's also cloud-synced within the Microsoft ecosystem, so it's difficult to lose. To profit from the integrated OTP generator in 1Password as well as to avoid some circular dependency (1Password OTP saved within 1Password), I have the OTP for 1Password duplicated in an external authenticator app (Microsoft authenticator, because I need it anyway for the push notification for my Microsoft account).