2FA prompts fpr websites which can't use 1Password 2FA

I have 1Password telling me to turn on 2FA for both eBay.com and Gemini.com, but neither will use the 1Password OTP (at least not that I can see). Gemini uses Authy, and eBay uses their own iOS app for the 2FA, and I can't get them to produce a QR code to setup the OTP.

So, how do I get 1Password to stop telling me to turn 2FA on for those, when it is actually enabled?

1Password Version: 7.3.684
Extension Version: N/A
OS Version: All
Sync Type: Familes


  • brentybrenty

    Team Member

    @alexwasserman: 1Password can use either a QR code to add TOTP for the account, or a text "TOTP secret". Most sites offer those since not everyone is able scan a QR code anyway, and they can be directly pasted into a new "one-time password" field in 1Password to get the same result:

    Use 1Password as an authenticator for sites with two-factor authentication

    And if a website doesn't provide a proper TOTP-compatible way to generate the codes with an app like 1Password, as in some cases you're required to use some other method they provide, you can always add the tag 2FA to the Login instead to let 1Password know you've got it coverer elsewhere.

    That seems to be the case with eBay, who appears to offer only two-step options either using their app or via phone, unfortunately.

    Gemini appears to have offered a TOTP option at some point, but I'm not sure if that information is current, as what I found on their site now mentions only dongle and propriety Authy options. If they'll let you select a a non-Authy option which gives you a TOTP secret to generate the code though, that will work with 1Password.

    I hope this helps. Be sure to let me know if you have any other questions! :)

  • 2FA tag looks like what I need, thanks.

  • ag_anaag_ana

    Team Member

    On behalf of brenty, you are welcome!

    If you have any other questions, please feel free to reach out anytime.

    Have a wonderful day :)

  • edited October 2019

    Specifically with regard to eBay, I think 1P7 and Watchtower could intervene. The data source you use identifies that specifically the eBay app must be used (or SMS).

    I have a concern about using the '2FA' tag for a specific login: at some point in the future, that site may choose to implement a form of 2FA which could be authenticated by 1P7, but if I have tagged it, I won't be made aware by Watchtower

  • edited October 2019

    PS if I have not being explicit enough: the screenshot (above) from my phone displays the entry for eBay at twofactorauth.org

    Whilst I don't know the format of the data 1P receives from twofactorauth.org, and which drives Watchtower 2FA alerting, I would have thought the data attribute which is interpreted with the warning triangle against eBay in the screenshot, could be picked up by Watchtower and handled in some "third way".

    Yes 2FA is available, but not via 1P7 so not an alert, more of an informational message

    Can you tell I used to be a programmer ;)

  • ag_yaronag_yaron

    Team Member

    Hey @AndrewParker ,
    Thanks for the observation! It is definitely something that is worth mentioning to our devs, although it is a very minor inconvenience with little effect, perhaps it can be implemented better in the future. Thanks for pointing that out :)

  • brentybrenty

    Team Member

    Likewise, thanks for brining it up! :):+1:

This discussion has been closed.