Page 1 of 1

Church Authenticator app no longer an option for two-step verification??

Posted: Thu Jun 11, 2020 6:57 pm
by jeremynwest
In the Two-Step Verification section in the Church Account settings, the Church Authenticator app is no longer an option to set up as a two-step verification method. It seems like since the Church has recently started using Okta for the Church Account login, it’s been replaced by Okta Verify. I am only willing to put the Church Authenticator app on my phone, not any huge corporation authenticator apps like Okta.

Re: Church Authenticator app no longer an option for two-step verification??

Posted: Thu Jun 11, 2020 7:07 pm
by russellhltn
I'm a little surprised that the church made an authenticator app. They typically focus on things that are unique to them and not try to re-invent the wheel. With other authenticator apps out there, they may have decided to not "compete" and focus the development efforts on things that only they can do.

If you're serious about 2FA, you're going to need to do that with other accounts too, like your email. So, you'd need an app for that. Might as well pick one that can do both.

Re: Church Authenticator app no longer an option for two-step verification??

Posted: Thu Jun 11, 2020 9:24 pm
by scgallafent
jeremynwest wrote:I am only willing to put the Church Authenticator app on my phone, not any huge corporation authenticator apps like Okta.

If that is the case, you will need to use the other available options for two-factor authentication. TOTP apps such as Google Authenticator, Authy, etc. are also options.

Re: Church Authenticator app no longer an option for two-step verification??

Posted: Thu Jun 11, 2020 10:12 pm
by russellhltn
scgallafent wrote:TOTP apps such as Google Authenticator, Authy, etc. are also options.

How would Authy be set up? I only see Okta Verify App, Google Authenticator App and "Security Key or Built-in Authenticator" listed. Is it the latter?

Re: Church Authenticator app no longer an option for two-step verification??

Posted: Fri Jun 12, 2020 6:32 am
by scgallafent
russellhltn wrote:
scgallafent wrote:TOTP apps such as Google Authenticator, Authy, etc. are also options.

How would Authy be set up? I only see Okta Verify App, Google Authenticator App and "Security Key or Built-in Authenticator" listed. Is it the latter?

Google Authenticator is one of a collection of applications that use one of two time-based one-time password (TOTP) algorithms specified in RFC 4226 and RFC 6238.

Here is an incomplete list of clients that support TOTP (translation: ones I can remember off the top of my head):
1Password
Aegis Authenticator
Authy (Twilio)
Duo Mobile
FreeOTP Authenticator
Google Authenticator
LastPass
Microsoft Authenticator

For all of these, say that you're using Google Authenticator and scan that QR code inside the app.

Push can only be done with Okta Verify, but all of the apps listed above will generate TOTP codes.