Signing back into the Community for the first time? You'll need to reset your password to access your account.  Find out more.

Forum Discussion

Johnep's avatar
Johnep
New Contributor
2 years ago

What authenticators work with 1Password?

I am considering 1Password. What authenticators does it work with? I use VIP Access for one app and also have MS Authenticator, but am open to others. FWIW, I use Windows 11 for desktop, browsers: ...
ios
GreyM1P's avatar
GreyM1P
Icon for 1Password Team rank1Password Team
2 years ago

Johnep

If a website doesn't support time-based one-time passwords (TOTP) such as ones generated by 1Password, Google Authenticator, Authy, and similar apps, then yes, something like SMS may be offered instead.

Two-factor authentication by SMS is considered insecure and lacking resilience these days, since they are paired to your phone number, which could be lost or stolen, and rely on you being able to receive an SMS at the time of use. Equally, if someone was to steal your phone number, as we've seen happen in some cases lately, that person would then receive your one-time passwords in text messages, and (crucially) you wouldn't.

Authenticator apps generating one-time passwords like 1Password does are considered much safer, since they don't fall foul of the things shown above. They're not linked to a phone number, don't need your phone to have cellular coverage (since they work offline), and all of your 1Password apps will show the same one-time password for the same item.

Wherever you have the option to use two-factor authentication, you should aim to use the TOTP (authenticator app) route wherever possible and follow the guide Dave shared to set it up in 1Password.

Hope that answers your question! We'll be here if we can be of any help. :)