2 Factor Authentication

[LF1925]

Got it, thanks for the details. For $20 sounds like it’s well worth the price of admission.

[BDHD]

"Authy" worked without any issues. Downloaded and installed the app on iPhone, opened the app and scanned QR code shown on my Desktop computer, entered code provided by the app and Done. 2FA is now enabled

[brandrea]

Just enabled it myself. It’s typical of most apps I find ... easy once you do it twice

[subtona]

I commend you for trying to resolve the issues encountered here on the forum.
Sincere thank you.


Everything I can think of that has been used in the evolution of security has been compromised. We have now come to a new milestone, our personal cell phone number. I am concerned as our cell phone number becomes the it thing for security, (remember when it was your social security number/ mother’s maiden name / dogs name/ first girlfriend or car or mortgage etc) all of them have become unreliable forms of authentication by themselves. I am also very concerned that there is just as much of a security risk giving access to your 24/7 movements through the user data accessible by tracking our cell phones to third party apps in the business of selling our data.

I could go on and rant and rave but surely the guys with the butterfly nets will eventually have to take me away.

Ps Recently I was going to purchase a watch bracelet ~$400. I had entered all of my personal info along with credit card info...then a new to me step was introduced for an online purchase. I was being required to enter my cell phone number and receive a verification pin number to include to finalize purchase. I did not complete the purchase.

I receive several sales calls a day, many not in my language. It is to the point I don’t want to answer my own phone. My purchase of an inanimate object is not an invitation for a personal relationship from the seller or those strangers my information is sold to.

I know it is too little too late on the privacy front to reign this crap back in but for me the cell phone is just going too far. The cell phone is essential for my current job, I can’t leave the house without it. I am not trying to take countless strangers interested in marketing me as a product with me when I go for a walk.


Again Steve thank you for your efforts, certainly the new standard for security has become 2fa and you are keeping up with the standards. I am genuinely concerned about the vastness of privacy and security we are losing as tech evolves... each side chasing improvements in security while marketing is exploiting each and every intrusion and hackers dreaming of ways to go deeper.


I guess I did rant.... knock at the door appears to be the guys with nets, gotta go.

[emersm]

I have the Authy app. It works with Google, but I am not sure it is working for TRF. TRF says that 2 factor authentication is enabled, but when I log out and then log back in, there is no 2nd factor authentication. Any suggestions?

[ZOOK]

Quote:

Originally Posted by emersm

I have the Authy app. It works with Google, but I am not sure it is working for TRF. TRF says that 2 factor authentication is enabled, but when I log out and then log back in, there is no 2nd factor authentication. Any suggestions?

2FA won't kick in unless your IP address changes. Try turning off wi-fi on your cell phone so you are using cell data and then start your browser on your phone and log into TRF.

[cop414]

Quote:

Originally Posted by ZOOK

2FA won't kick in unless your IP address changes. Try turning off wi-fi on your cell phone so you are using cell data and then start your browser on your phone and log into TRF.

Correct.

[emersm]

Quote:

Originally Posted by ZOOK

2FA won't kick in unless your IP address changes. Try turning off wi-fi on your cell phone so you are using cell data and then start your browser on your phone and log into TRF.

Quote:

Originally Posted by cop414

Correct.

Thank you, gentlemen. Works perfectly.

[Case61]

I'm trying to enable 2FA with Authy. I read through this thread two or three times before attempting, but I have still messed something up.

I use an Iphone X and a Mac Air, and access TRF from both (thought mostly the Mac) with just web browsers. I've never used TapATalk. I downloaded the Twilio Authy from the App Store onto my Iphone. Using my Iphone, I entered phone number and email, and received the text verification. I scanned the QR Code on my Mac at the forum page in User CP on 2FA and then followed Authy's on-screen instructions. (Btw, I printed out the page with the QR code and the recovery key.) All the instructions seemed to go through ok, and I ended up with an Authy account labeled "RolexForumsRolexWatchForum" (Authy put in the name). When I open Authy, it generates a token for that account every 30 seconds. But when I open TRF on either the IPhone (whether wifi or data), or the Mac (wi-fi), it doesn't request the token, nor reflect that 2FA is enabled.

I've hesitated about deleting the RolexForums account from Authy and trying again in 48 hours, out of fear of messing things up further. Any help appreciated.

Thanks

[htc8p]

how come i always have to input 2FA from google authenticator for my desktop PC?

[Wrist Watcher]

I just activated mine. Thanks a bunch!

[copperjohn]

Just found this thread, and set up the 2fa. I used my iPad to start it since I don’t have a desktop. Easily set up. Thanks.

[fskywalker]

Hi folks. Replaced this week my Iphone and cannot access anymore the token for the authenticator entry when using the site.



Tried to disable on my home laptop but it is asking me for the code but don't have it. Is there an alternate way to remove it and then re-install it again? I re-installed the F2F application on the new Iphone but cannot generate a token to use on TRF. Any help would be appreciated!!


Sent from my iPhone using Tapatalk Pro

[Recaro18]

Quote:

Originally Posted by fskywalker

Hi folks. Replaced this week my Iphone and cannot access anymore the token for the authenticator entry when using the site.



Tried to disable on my home laptop but it is asking me for the code but don't have it. Is there an alternate way to remove it and then re-install it again? I re-installed the F2F application on the new Iphone but cannot generate a token to use on TRF. Any help would be appreciated!!


Sent from my iPhone using Tapatalk Pro

I have the same problem when I got a new Phone. So I can only access TRF when Im using my Home Wifi...any fix to this?

[fskywalker]

Quote:

Originally Posted by recaro18

I have the same problem when I got a new Phone. So I can only access TRF when Im using my Home Wifi...any fix to this?

PM Sent

[trackingtime]

Quote:

Originally Posted by fskywalker

PM Sent

hi! could you help me out as well?
set up my new iphone and google authenticator wasn't linked to TRF.
and i can't seem to reset the 2FA on the forum itself for the QR code

[Toony]

Quote:

Originally Posted by recaro18

I have the same problem when I got a new Phone. So I can only access TRF when Im using my Home Wifi...any fix to this?

I’m having the same issue. Any suggestions??

[Lol-x]

2FA cannot be cracked.
You should have a master key/password for Google Authenticator when you first installed it on your phone. You need to use that on your new phone with Google Authenticator so it can associate you with your previous phone.

[fskywalker]

Hi Steve the phone numner is the same, what changed was the actual device. I installed Authy (not Google translator) and have not find a way to obtain the master key / password. I reported the issue to Authy and went through a 24 hour reset process bit still cannot generate a code acceptable for TRF to de-install / disable the F2F. On authy it is asking me to re-add TRF through a QR code or manually with a key which don’t have

[teckel12]

I tried 2FA for several months here, but I just turned it off. It was constantly asking for a 2FA code. I'd put it in, view a few pages, and then it would ask again.

As a web software developer, I believe it's implemented incorrectly. First, it seems my session validation is being tied to something that's changing. I'm on a IPV6 NAT which is probably changing something which triggers TRF to believe I'm no longer validated. Also, when it goes to the validation page, it seems to be doing it client side and replacing my browser history. Then, when the code is entered, it always goes to the home page, and I can't go back to go to the page I was on, because it's replacing browser history instead of adding to it.

Basically, it needs some tweaking. As it is now (at least with a modern IPV6 NAT connection) it's next to unusable. If there's some updates/changes, I'd appreciate an announcement so I could try it again. I'd like to use it, but as it is right now, it's one of the most frustrating things I've experienced on the Internet in a while.

</rant> </vent>

I feel much better now ;)

[Daso]

Hello All, I'm now in a similar bind. I had to set up a new account last year since I was hacked and set up two factor authorization, now all of a sudden, I can only access the site from my home PC and every other location or device I try asks me for the verification code from google authenticator. Problem is that every time I generate a code, I get invalid authorization code and when I went to try to disable Two Factor from my account on my home computer the dreaded authorization comes up and I get the same error trying to disable it. I don't recall ever getting a recovery key as well. Help, anyone know what I can do here? Kind of silly to be able to only access site from home (not even my Iphone works) PS Do you enter the google 6 digit authenticator code with a space between the two sets of numbers or no space?

[teckel12]

Quote:

Originally Posted by Daso

Hello All, I'm now in a similar bind. I had to set up a new account last year since I was hacked and set up two factor authorization, now all of a sudden, I can only access the site from my home PC and every other location or device I try asks me for the verification code from google authenticator. Problem is that every time I generate a code, I get invalid authorization code and when I went to try to disable Two Factor from my account on my home computer the dreaded authorization comes up and I get the same error trying to disable it. I don't recall ever getting a recovery key as well. Help, anyone know what I can do here? Kind of silly to be able to only access site from home (not even my Iphone works) PS Do you enter the google 6 digit authenticator code with a space between the two sets of numbers or no space?

No space, the numbers only.

[inoahguy]

Hi everyone, looking for some help here.
My 2FA is technically enabled here on the site, but I never actually linked it to the google app. How do I go about resetting it so I can start from the beginning to scan code? When I "disable" here on the site, the only option is to enter key to enable it again... Problem is I cant generate a key because the two were never synced. Thanks for any help.

[ZOOK]

Quote:

Originally Posted by inoahguy

Hi everyone, looking for some help here.
My 2FA is technically enabled here on the site, but I never actually linked it to the google app. How do I go about resetting it so I can start from the beginning to scan code? When I "disable" here on the site, the only option is to enter key to enable it again... Problem is I cant generate a key because the two were never synced. Thanks for any help.

Send a PM to forum admin, Steve 'Lol-x' for assistance disabling 2FA.

[tobyco]

I'm trying to enable 2FA and I'm not getting a QR code generated I'm just getting a small blue icon with a question mark in it.

[Lol-x]

2FA is a secure system and cannot be hacked.

If your problem persists contact me for advice.