-
As a result of an article this morning, I thought I would check out my 2FA status as I couldn’t remember whether I had ever seen this. Here’s the interesting thing, there is no where on my account to add or update 2FA that I have been able to find. I have Googled it to find out where it should be and I don’t have that. On my password manager I do have a recovery number which suggests I do have 2FA and I normally would add it as soon as I sign up to anything. Any thoughts?
Hi, Please ignore this post (I couldn’t find out how to delete it. Problem solved, I have a passkey for 2FA, all is well.
Hi, Please ignore this post (I couldn’t find out how to delete it. Problem solved, I have a passkey for 2FA, all is well.
How did you determine that? All I seem to be able to do with my BA account is change the password; nowhere can I find how to add 2FA. Ideally, I’d connect it to an auth app, but no option that I can see to do that.
I *think* that if you can’t see any 2FA option then you have 2FA. The only way I could confirm this is via an Incognito window in Chrome AND a VPN to the USA. An Incognito window on its own let me login with no 2FA.
BA really need to improve their security.
@danimal excellent! Thank you, that worked. VPN to the US, incognito window on Chrome and I needed to use my fingerprint (Mac) to log in.
I think that’s reassuring. Much appreciated, ta.
You’d think that that ‘recovery key’ might be the secret key for TOTP but BA doesn’t do TOTP. If you verify using the secret key, you get another one. Seems like the only way to reset is calling them which I will do at some point to reset the passkey that has gone AWOL.
*sigh*
I *think* that if you can’t see any 2FA option then you have 2FA. The only way I could confirm this is via an Incognito window in Chrome AND a VPN to the USA. An Incognito window on its own let me login with no 2FA.
BA really need to improve their security.
To test that, wouldn’t you need to check whether you are prompted to provide the second level authentication by logging on from a device you’ve not used before?
My way of thinking is that I’m perfectly happy with NOT having to provide the second level every time I log on from the same, or previously approved, device. It just becomes a chore, otherwise.
- You must be logged in to reply to this topic.
Popular articles this week:
