You are viewing a single comment's thread from:

RE: Broke my phone screen, can't access 2fa for some accounts like bittrex

in #asksteemit7 years ago

I suck at explaining things so please bear with me xD

Secret code/key: when you set up 2fa on some website, they give you qr code which consists of secret key. This is shared secret between you and website. As long as you have backup of this secret you can gain access to your account. Suppose if your phone dies, then install authenticator on other phone scan qr code, done.

Backup codes are one time usable codes, suppose if your phone dies and you don't have secret key and have backup code then you can open website through it, then generate new secret key.

Unfortunately, Google authenticator doesn't allow backups but worry not I just found out new app which allows to do that. It's available on both IoS and android. It's paid app but you should not be caring about few bucks when it relieves future stress :)

It's authenticator plus:

https://www.authenticatorplus.com

Sort:  

Thank you very much! When it comes to the hassle and stress in losing access to our Google Authenticator - and especially in not being able to access our crypto assets at the exchanges - spending a few bucks on protection is well worth it. Many times over. I will definitely check out this app.

In the meantime, and thanks to this post and especially your comments here, I took the trouble to do some research. Trying to find ways to back up our GA. This link provides the simplest way - use Authy in place of Google Authenticator https://www.icontrolwp.com/blog/google-authenticator-backups/

I've gone out to one exchange which I have registered but not yet used. Not at my regular exchanges (Bittrex and Binance), in case I bungle something and locking myself out. Followed the instructions at this website and... it works!

I have also taken a screenshot of the QR Code and key you mentioned above when registering 2FA again. Then saved it in an encrypted VeraCrypt folder. It's on my laptop, USB and cloud (no worries - it's encrypted with AES with SHA512 hash). I will repeat the process with the other exchanges and important sites. In addition to looking up the app you mentioned here.

Thanks again, everyone. This is the most important thing I've learned this week.