In Part I, we discussed various ways to recover from losing two-factor authentication (2FA) credentials. Today, we will talk about how to prevent it from happening. With this method, you'll be able to access codes, tokens and passwords via any device with a master password.
Proactive Backups for PreventionLike I said in the last post, there are only a handful of actual solutions a user can do if they get locked out of their 2FA. After all, isn't the whole point to make it more secure and difficult for other devices or people to gain access?
What you can do though is be proactive with your 2FA. good way to do this is by backing up your codes/tokens with a password manager like Keeper Security, LastPass 4.0, Dashlane 4 or Sticky Password. Password managers can range anywhere from free to more than $40 for a subscription, depending on your needs as the enduser, and can be accessed via an app or through a web browser.
For this example, let’s talk about Keeper Security and the kind of features it offers. Like the other password managers, Keeper is a 256 AES encrypted password manager that uses a never-stored master password to gain access to all of your other passwords.
NOTE: you MUST remember your master password for this method to work.
Keeper has free, individual, family and business grade subscriptions, and they all can use 2FA capabilities. The free version, as with most free password managers, stores your information locally through the app. It's only for a single device and it has email support–and that's about it.
If you are a person who absolutely treats your phone or device like Fort Knox and doesn't let it out of your sight, then this could be the solution for you. But I wouldn't completely recommend it since this is all about how to prevent yourself from getting locked out, especially if your device is lost, stolen or destroyed.
- Unlimited password storage
- Unlimited device and sync
- Unlimited secure cloud backup
- Unlimited secure record sharing
Other password managers may vary, but generally consist of the same features.
All versions come with 256-bit AES encryption and PBKDF2, which is some of the strongest (as well as the current industry standard) encr
yption out there.
On top of that, the app will let you sign into your phones apps with those long passwords you just created via the auto-fill, dubbed "KeeperFill." It lets you sign into your apps quickly and securely. You can even login using your one-touch fingerprint scanner (requires fingerprint scanner enabled device).
A Business Solution For You
The business subscription has more enterprise type features that you would expect to find in a business version software. Some features included:
- Admin console
- Unlimited devices
- AD and LDAP Integration
- Shared folders
- Auditing and reporting
- Dedicated secure cloud
- 24/7 Support
A product like this can go a long way in benefitting you in more ways than one, including that 2FA verification discussed earlier.
This is just one example of a solution and its features, but there are many other password managers out there that do as good a job, or better. Just get the one that suits the needs of you or your business, and remember to be proactive with your security.