Trying to clean up my 2FA process after having an iPhone go through a snowblower.

Wanting to not use authentication apps [Google, Reuters el alia]. And not really currently interested in Yubikey.

From your experience, when might I not be able to setup and use 1P for one-time passcode 2FA?


1Password Version: 8.10.0
Extension Version: Not Provided
OS Version: iOS 16.3.2
Browser:_ Safari
Referrer: forum-search:When would 1P not work for managing 2FA codes

Comments

  • @47biedman

    There are the occasional sites who insist on SMS authentication. You might want to look a https://2fa.directory/us/ for any sites you have questions about. I can't think of any problematic ones off-hand. At least not in the apps and sites I use.

  • 47beideman
    47beideman
    Community Member

    OK. Spoke with Schwab today about migrating from the fob to 1P. They directed me to Symantic VIP app [for the Mac].

    Got that working but I really want to use 1P for 2FA. Know anything about how to do that? Ask me whatever questions about the VIP app and I'll see if I can answer them.

    Thanks.

  • If you're able to generate a code from the site or the site provides a texted based string you can likely use it with 1Password.

    Use 1Password as an authenticator for sites with two-factor authentication

  • 47beideman
    47beideman
    Community Member

    Currently I must use the Symantec app which provides me with a "credential ID" and the 6 digit code. Can I use the Symantec app to transition to 1P?

  • Joy_1P
    Joy_1P
    1Password Alumni

    @47beideman You could use the Symantec app and then later on import your data to 1Password: https://support.1password.com/import/#import-a-csv-file-from-another-app. 1Password can't be used only as an authenticator for your websites. If you do that, you'd end up adding your login data, and if you use the Symantec app, then you'd have 2 different apps/services for your logins. Does your bank require for you to use the Symantec app? If not, I recommend just setting up and using 1Password so that you don't have to have a separate app for 2fa.

  • 47beideman
    47beideman
    Community Member

    Bank does require Symantec app [finance companies are both so controlling and tech laggards]. Trying to get around using their app.

  • @47beideman

    If this is work related, don't run afoul of corporate and IT polices. Stay safe!

    If it's personal and we're talking about the industry in general then they can be more controlling and while they may think they have our best interests at heart... It's one of the reasons we created this. An open letter to banks

  • 47beideman
    47beideman
    Community Member

    It's personal. That letter is great. I've been trialing different personal finance packages and "automatic" downloading process may be the worst I've seen in many, many years of living in tech.

    Years behind.

    Hey - you guys should buy a bank and write a personal finance app. Problem solved!

  • Joy_1P
    Joy_1P
    1Password Alumni

    @47beideman we might have to consider that in the future!

  • joisagile
    joisagile
    Community Member

    Why not have an open letter that users can send to any website not just banks?

  • Hey @joisagile,

    Banking websites are renowned for making it difficult for password managers to fill credentials as a way to try to increase security but what they're ultimately doing is making it more difficult for users to rely on password managers to fill their complex passwords. Therefore we'd thought it would be good to address these directly.

    As for other sites, whilst I agree that it would be good to have an open letter there is also a lot we can do on our end in most cases to improve 1Passwords ability to fill on these pages and it is different across all sites so we deal with it on a case by case basis.

    If you are coming across websites where 1Password is having a hard time filling. please feel free to send them over so we can do some testing and make improvements where possible.

    Let us know if you have any questions!

  • joisagile
    joisagile
    Community Member

    Here is my list of problem websites. There are several more but these are the ones I use most often.

  • Hey @joisagile,

    Thank you for getting back to me with this detail. I'm sorry for the delayed reply I have been taking some time to test each website one by one. I will detail what I have discovered below. I do apologise I was unable to access a few sites which I think may be down to my location (UK).

    https://www.treasurydirect.gov/log-in/
    For this site you're right, the keyboard does make it difficult for 1Password to fill but we have improved the behaviour in recent updates so you should be able to click on the 1Password icon in your browser toolbar and click 'Autofill' to fill the password field.

    https://member.highmark.com
    On this site I kept being faced with an error when trying to fill the GDPR pop up. When you say you can’t go directly to the login page are you using Open and Fill? When you finally do get to the login page are you able to use 1Password to fill as expected?

    https://my.ecwa.org
    On this website, 1Password is having a hard time detecting the fields as login fields and is instead offering to fill it as a registration form. I have filed an issue with our development team to see if we can improve the behaviour on this page in a future update.

    ref: dev/core/core#21067

    https://secure2.homedepot.com
    I'm afraid on this site I was getting 'Access denied'. Can you describe what you mean by ‘multiple clicks to sign-in as use of password is a second option’?

    https://www.jacquielawson.com & https://www.llbean.com
    Due to the way these websites are built with the login form being a pop up on the homepage instead of it having a separate url you will need to click login on the page but then on clicking in the fields 1Password should offer to fill the credentials as expected.

    https://www.kohls.com
    I found I was able to fill on this page after following the steps below:

    1. Go to the log in page
    2. Manually enter your log in details but don't click enter or sign in.
    3. Right click the 1Password icon in your browser toolbar and choose 'Save Login'
    4. Give it a title and click Save.
    5. Now refresh the page and see if you are able to fill.

    https://www.lowes.com & https://wegmans.com
    I was unable to access the login form on either of these websites but it looked like clicking sign in took you to a separate page so can you repeat the steps I have listed above on each of these sites and let me know how you get on?

    Let me know if you have any questions!

  • joisagile
    joisagile
    Community Member

    Thanks for the suggestions. I will try them

    For Home Depot, just use homedepot.com. This is a multi-step process where 1password works but just requires several steps.

    Looks like treasury direct works better with 1password now. It didn't the last time I used the website.

    Regarding Highmark.com, yes once I get to page, 1password will fill.

    Regarding llbean.com et al., I agree that 1password works but I object to having to taking two steps when one should do. I know that you can't fix the problem but those websites probably aren't even aware of the number of people using password manager.

    Your response points to the exact problem I was trying to raise. So many websites are not built to accommodate password managers. They'll be no reason to change these websites unless enough of us complain and explain what needs to be done. Hopefully, if you provide an open letter then enough 1password users will forward the letter. Maybe we can start to see some changes.

    Until then, I suspect that websites will continue to come up with different login strategies and Agile will be trying to keep up. And, I wouldn't be surprised if more websites allow you to logon-in with your google or Facebook credentials. Think how scary that would be if one id unlocked each of the websites that an individual uses.

    Just some perspective... My wife and I have 150 logins in 1password and used at least once per year. We also have 141 logins in a vault called "Rarely used logins."

    I can travel almost anywhere in the world and use wifi from my smart phone, so why can't the web community set some standards for id/password creation and login procedures that are compatible with password managers? In fact, why not provide open-source routines in web development languages that are routinely tested by the development community? I know you can't answer these questions.

  • Thank you for getting back to me @joisagile, I hear what you are saying.

    The battle to keep 1Password filling properly across every single site on the web is a one without a clear endpoint. In these scenarios, we cannot determine where the login fields are using a website URL so it requires a little manual input for you to point 1Password at the login form.

    This would be the same if you were to create bookmarks in your browser for all of your login pages, you would still need to click login in due to the way these specific websites are structured. 1Password is working as expected on these login forms and it wouldn't be possible for it to automatically open the login form on the page for you.

    We do have documentation for web developers in terms of best practices for designing websites to work best with 1Password. However, we are unable to determine how a website is structured and where they place the login fields.

    Of course if there are websites where 1Password is not working as expected please let us know so we can make improvements on our end but if there are some where accessing the login form is particularly difficult for you I would recommend contacting the website owners themselves.

    Let us know if you have any questions!

This discussion has been closed.