2FA requirements

Hello:
I was looking forward to enforce 2FA in my account. However, i can see that it can only be enforced if you are using passwords that are at least 14 characters.
What is the reason behind this? I do not have that many users that will be able to handle that kind of passwords, and i can still enable 2FA 1 by one.
The outcome is that you can do it, it is just much harder to implement.

Thanks.
Regards


1Password Version: 7.4.763
Extension Version: Not Provided
OS Version: Not Provided
Sync Type: Not Provided

Comments

  • ag_ana
    ag_ana
    1Password Alumni

    Hi @rlarranaga!

    The strength of a Master Password is your line of defense if encrypted 1Password data were captured from your computer or phone. Two-factor authentication does not, and cannot, offer protection in such circumstances. We want administrators who choose to require two-factor authentication for their organization to understand that 2FA does not make it safe for 1Password users to use weak Master Passwords, and to help them enforce strong Master Passwords. With many traditionally designed services, 2FA allows you to “get away with” a weaker password for the service, but that is not the case with 1Password.

This discussion has been closed.