Anyone who uses Google services, be it GMail or any other service, has probably heard about an additional way to protect your account from theft and hacking called “two-step authentication.” This method adds an additional code to the mandatory entry of the user account name and password, which can be obtained in one of the available ways (via SMS, voice call, smartphone application) and must be specified during authentication. Thus, even if the villain gets your account name and password, he still will not be able to do anything with the account itself and the top-secret data located in it.
Many people refuse to use two-step authentication because they are afraid that it is very difficult and generally inconvenient to enter an additional code every time. In fact, it is not necessary to set up two-step authentication easily and constantly enter codes on frequently used computers, and the knowledge that your data is reliably protected is well worth the possible minor inconveniences.
Google Authenticator: what is it for and how to restore access - instructions
Relatively recently, Google developers began to implement the Google Authenticator service, which speeds up and simplifies Internet surfing, working with websites, and registration processes.
This is a fairly easy-to-use application that provides the opportunity to use the full functionality of a particular site without registration.
In this article we will try to answer the question of what to do if an application is lost and how to restore access to sites in the event of a failure.
Reliable and unreliable computers
Next comes a very important part of the setup. Google asks you to determine whether the computer you are currently using is reliable. The point is that for reliable computers, entering the code to log into your account is enough to do once every thirty days. Reliability here refers to whether other people have access to this computer.
Perhaps, in this situation, only a home machine can be called a reliable computer, and only on the condition that no one but you uses it. We safely mark work and other computers as unreliable, that is, uncheck the “Trusted computer” checkbox. Click “Confirm”.
Method 2: Transfer Authenticator
The latest versions of the Google Authenticator mobile app, regardless of platform, provide the ability to import an authenticator to another device. So, if you're preparing to switch to another phone, it's easiest to transfer rather than restore in the future.
Step 1: Data Preparation
- Launch the application and on the main page in the upper right corner, tap the icon with three vertical dots. From this list you must select “Transfer accounts”.
In the “Account Transfer” section, use the “Export Accounts” item and on the screen that opens, check the boxes next to the accounts that you want to transfer.
Article on the topic: What is an adwords account
After this, a QR code will appear on the screen containing information for transferring data about the allocated accounts to the new device.
Step 2: Import Data
- To transfer, now on your other phone, open Google Authenticator, expand the three dot menu in the top right corner and select Transfer Accounts.
Tap "Import Accounts" and in the "Take your old device" section, use the "Scan QR Code" button. To import, all you need to do is point the camera at the area with the QR code on the screen of your previously used phone.
Upon successful scanning and additional confirmation, data will be imported. You can later use your new device to receive temporary codes.
leaf way
A situation can happen to anyone when the phone is forgotten at home, and along with it an authenticator application and the ability to receive SMS. In such a case, it is useful to play it safe and use backup codes.
You can simply write them down on a piece of paper and print them out, then carry them in your wallet. Each such code is one-time use, and when the printed codes begin to run out, it is enough to request the generation of a new pack of codes.
We hope this guide helps you.
Smartphone stolen: Google Authenticator
When we have come to terms with the theft, we move on to setting up Google Authenticator.
- Again, go to your account settings, scroll down to the “Security and Login” section, and click on “Two-Step Verification.”
- The service will ask you to enter your password again. Next, set up login via SMS.
- After this, Google will send a code, enter it and get into the settings. Here we scroll down and find Google Authenticator.
- Click “Setup” and download the application to your new smartphone.
- We scan the QR code that the service generates and enter the code from the application.
After this, verification will be enabled. Here you can transfer Google Authenticator data to other devices.
- Is there a balance on the account? If there is, you will have to list all cryptocurrencies;
- When the account was registered;
- Provide a history of transactions on a crypto exchange;
- Provide an identification document;
- You will also need written assurance that the user’s mailbox is actually registered and used on the KuCoin crypto exchange;
Google account bypass
It should be noted that the situation is complicated by the fact that in the context of a large number of companies producing smartphones based on Android, and an even larger number of models, there is simply no single universal solution for all devices. Therefore, we will now look at several proven options.
How to avoid the reset problem
To avoid getting into an unpleasant situation, do not forget to take advantage of the opportunity provided by the developers. To do this, before performing a reset, go to “ Settings ”, select the “ Accounts ” section (maybe “ Accounts ”), find “ Google ”, open it.
Google Password Recovery with Two Factor Authentication
Google is extremely liberal about what exactly can be an additional factor. Here is the list:
Your Android phone or tablet in which your account has been added
- Only if you can unlock it (with biometrics, password, etc.)
- Push notifications are easy to confirm without any codes
- Authentication is carried out through the server (or rather, through GCM services)
Article on the topic: How to create a Skype account without a phone number
Trusted phone number
- Unlike Apple, Google does not consider phone authentication secure. Accordingly, having at least one trusted telephone number is not a mandatory requirement
- You can register multiple trusted numbers
Authenticator app
- Works offline
- Standard TOTP protocol
- There are many applications of this class for any, even the most exotic platforms. They are compatible with each other
- Applications are produced by Google, Microsoft, Xiaomi and many independent developers. I repeat, they all perform their function, including for Google accounts
- All authenticator app instances are initialized with the same QR code. Accordingly, the codes generated by all instances using the TOTP protocol will be the same at every point in time
- The same QR code can be used to initialize multiple authenticator instances on different platforms
- Revoking one compromised authenticator in Google Account settings automatically revokes all other authenticator instances initialized with the same QR code
Other interesting options
- One-time code list: You can print this and keep it in a safe place
- Hardware keys (FIDO U2F or built into the smartphone)
- Browser (implies Chrome, but others work in this capacity) from which you logged into your Google account, if you did not indicate during login that you are logging in from a public computer
If the second factor for logging into Google Account is lost
Google understands that access to 2FA can be lost in the same way as a password. The company wrote a detailed article on this topic, “Problems when using two-step authentication,” which begins with the paragraph “My phone was lost or stolen.” In general, they won’t tell us anything particularly interesting: most of the offers boil down to using one of the many additional authentication factors that could still remain at your disposal. Perhaps the only interesting option is to enter the Google Account settings from a browser on the computer on which you once logged into your Google account, and directly from there, temporarily disable two-factor authentication or, for example, generate a dozen fresh backup codes. However, taking into account how liberal Google is towards additional authentication means, you can take care in advance to create additional ones.
Article on the topic: How to recover your Google Play account
If none of the additional factors are available to you, then the only remaining option is an automated procedure for restoring access to your account. We've tested this feature multiple times and, as with Apple, we've found that using it successfully is a matter of luck rather than anything else. Sometimes we were able to gain access to the account, but often our attempts ended with Google simply blocking the account and requiring us to change the password. By the way, an attempt to restore access to your account will fail with a very high probability if you try to do this while traveling abroad. But from home, from your own IP, you have a chance.
Two-factor authentication, children's accounts and Family Link
Like Apple, Google recommends creating separate accounts for children, including children under thirteen years of age. Just like in the Apple ecosystem, you can add a child to a family group, which will allow the child to use the applications you purchased - however, only those that you paid for after July 2, 2016. (For example, the Nova launcher I bought a long time ago is not available in my family group.)
If a child uses a tablet or phone with Android, then his account can be managed using the Google Family Link application (by the way, Family Link functionality is also available on the iOS platform through the application of the same name). Google Family Link is similar in many ways to Apple's Screen Time and performs similar functions. However, Google does not have a number of restrictions (for example, a child’s account can be freely added and deleted regardless of age), but there are others (for example, when Family Link is activated, the YouTube application automatically becomes unavailable on the device of a child under thirteen years old).
Article on the topic: How to delete a Google account from Lenovo
We are interested in Family Link primarily in how it processes two-factor authentication - and it does exist. In order to set up your child’s device, you will need to enter both the password for the child’s account and the password for one of the parents: this is the second authentication factor.
Children can forget their password (they don’t have to use this password, so this happens all the time). Accordingly, the procedure for changing a forgotten child password is simplified to the limit: a parent just needs to open the Family Link application and right on the main screen tap on the “change password” command. After this, the child's account password can be changed. The whole process takes seconds.
What happens if a child loses a device? You simply set up a new smartphone or tablet on Android using the password from your child’s account (current or newly installed) and, as a second factor, the password from your own Google account. As you can see, no drama; There is simply no possibility of losing access to your account.
By the way, an interesting point. When a child turns thirteen, he or she can become independent and free from Family Link's control. After this, he will have the opportunity to configure his own two-factor authentication methods.
How to create a QR code on iPhone?
Go to the “Share” menu, scroll through the list of available actions and launch “Shortcuts”; Here, select “Links” and click “Generate QR Code”; Once the code is created, you can view it immediately, save it for later use, or forward it.
Interesting materials:
Why doesn't the snow crunch? Why doesn't the snow leopard fall into the snow? Why doesn't the dog eat in the heat? Why can't dogs eat potatoes? Why do dogs howl at the moon? Why Sochni and not Sochnik? Why does laundry dry in the cold? Why do aster seedlings dry out? Why are soldiers buried in a zinc coffin? Why is the sun warm for children?
How to disable Google Authenticator?
Log in to your personal account on the site where Google Authenticator was connected, go to your account security settings and click disable Google Authenticator. You will be required to enter a 6-digit code from the Google Authenticator app, after which it will be disabled.
Note: after disabling two-step authentication via Google Authenticator and reconnecting it, you must re-save the generated QR code and “Secret Key” (the old ones will no longer be active and will not help in restoring access to your account).
Beginning of work
To understand how to use Google Authenticator on Android, you need to install it - this is the first step. The program can be found in the Google Play Market absolutely free.
While the program is loading, open your account settings in the browser:
Now the first stage is completed - and it’s time for us to return to the application downloaded to the smartphone!
Let's return to the settings page opened in the browser - on the screen you will see the generated digital code and a picture with a QR code. The choice is yours!
After completing the setup, you will see the message “Done”. Congratulations! You did it, were able to activate the option and successfully configured the service.
You don't need to think about how and where to get the key for Google Authenticator - they will be generated by the system automatically as soon as you need the combination for authorization in your profile.
Finally, we explain how to use Google Authenticator on your phone for third-party services. If you want to set up two-step verification for a site, make sure it supports it.
Resources that offer additional account protection display a service button on the settings page. All you have to do is click on the Google Authenticator icon, select a confirmation method - a numeric code or a cuar, and complete the authorization procedure as described above. Works for any sites!
They told you not only where to find the barcode for Google Authenticator, but also how to install the application and use the regular code. Now you can use a reliable service and will not worry about the safety of your personal data!
Source
How to restore Google Authenticator? What to do if your phone is lost?
If you have two-factor authentication enabled, then if you lose your smartphone, you will lose access to your account. We recorded the 16-digit 2FA key - great, no problems.
Article on the topic: How to transfer an icloud account to Android
Download two-factor authentication software on another device and add your account manually. But if you have a recovery code, everything is much more complicated. Users who have passed full verification on the exchange can contact the support service and they will be explained how to restore the Google authenticator. Well, if you work incognito, then you can reset Google authentication settings as follows:
- Open the login page.
- Provide your email address and password.
- When asked to enter your 2fa code, click " Can't access Google Authenticator? "
- Read the reminder and confirm the request to eliminate two-factor in the site window.
- Go to your mailbox, open the letter from the exchange and click “ Confirm reset ”.
Important! Now you will have to go through full identity verification and only after that you will be able to reactivate two-factor. Until you do this, your exchange deposit will be blocked.
Ratings and Reviews
Risky Choice for 2FA
Using an authenticator app for 2FA is seen as a top choice for securing access to sensitive accounts over other methods. However, when the app stops loading, and instead crashes on open, you can easily lose access to these accounts if you're relying on the app for 2FA and you don't have backup methods configured (or physically accessible to you in the moment ). This app is quite terrible in terms of its support and user experience. It did work, at one point, and now it doesn't which means that I can never rely on it again. I've been slowing shifting to the Microsoft Authenticator app which has a superior user experience and feature set, is substantially more reliable, and works. I would not use this app if I were you.
Terrible mfa application. The absolute worst.
Use any other MFA app, but this one. It does not save your information. If you change phones or migrate phone platforms, you are completely screwed unless you remove mfa from all your apps before you uninstall the Google Authenticator app. And if you lose your phone, you are just screwed with no recourse. If you use the Microsoft Authenticator, at least it will remember your information while you are on the same phone platform. But Google? Nope. Don't even bother to ask for help because all you will receive is arrogant script kiddies belittling you for something you didn't even know you were supposed to do. I'll be uninstalling many Google apps in the coming month. I can definitely do without you at least Microsoft has support for the products they make. Imagine if GM made you ask other car owners how to use the windshield wipers, or how to change a tire. Google's arrogance is amazing. I'll make use of capitalism and find a better mouse trap.
No Cloud Backup
There are many reviews complaining that deleting the app, migrating to a new device, etc… lost access to their 2-factor auth codes. This is exactly what you want from a security perspective! That is precisely why I rated this app with 5 stars. Very few 2-factor apps do not backup to the cloud and this is one of them. No question that cloud backup is extremely convenient but there is often a trade-off between convenience and security and this is a great example of that. This app is for those who choose a bit of extra security (codes only stored on the device) over the convenience of having their codes stored both on the device and in the cloud.
How to restore an authenticator if the smartphone with the application is unavailable
If you no longer have access to the smartphone on which the authenticator is installed, try to remember: perhaps you are still logged into the account you are trying to access on one of your devices? Further actions depend on the answer to this question.
We restore the authenticator if access to the account is on some other device
If you are still logged into an account on one of your devices that you are trying to log into on another, then fixing the situation will not be difficult. In this case, try going to the settings and resetting the authenticator, that is, linking it to a new application. Usually the corresponding item can be found somewhere on the “Security” tab. For example, with Google and Yandex accounts, this option will work, even if you are logged in to just one of the applications of these companies - say, YouTube or Yandex.Navigator.
Article on the topic: How to unlock your phone if you forgot your graphic password and zte account
Sometimes in the same settings you can view the secret key or QR code of the authenticator - some services (but not all) allow this. In this case, you will simply enter this data into the authenticator application on the new device.
Unfortunately, this method does not always work, even if you are still logged into your account on one of the devices. The problem is that not all services have the same set of settings in the web version and in the mobile application - the required option may simply not be there where you are logged in.
How to restore an authenticator if there is no access to your account
If you are no longer logged into your account and you lost your smartphone with the authenticator application, reset it to factory settings, or it was stolen from you - in general, you no longer have access to it anyway - then you will not be able to restore the authenticator. As in the case when the method described above did not work.
All that remains for you is to use the procedure for restoring access to your account. If we are talking about an account in one of the major public services - Google, Yandex, Facebook, Instagram, Mail.ru, VKontakte, and so on - and your account is linked to mail or phone, then you can restore access by using alternative confirmation method.
To do this, start logging into your account, specify your username and password, and at the stage when you usually need to enter a one-time code from the authenticator application, look for a link with a name like “Other verification methods.”
After that, select the option that is convenient for you - usually services support delivery of the code via SMS, voice call or email - and wait until you receive the code. Most likely, this will not take much time, and very soon you will be able to log into your account.
Article on the topic: How to return a Steam account if there is no key
If, due to the loss of your authenticator, you have lost access to your account in a corporate or small public service that does not have a convenient page for automatically restoring access, then you should contact your local administrator or support service. You will have to describe the situation and, most likely, confirm in one way or another that you are the real owner of the account.
Once you are finally able to log into your account, link the authentication to the application on your new smartphone. Well, in order not to go through all the procedures described above the next time a smartphone with an authenticator is lost, it would be wise to immediately create a backup copy.
App and device passwords
The next step is to create passwords for applications. This is necessary because some applications access your Google Account outside of the browser. The process of creating passwords is much simpler than it might seem. Moreover, you only need to create these passwords once and do not have to remember them.
So, click the “Create passwords” button and at the same time remember which devices and applications access our Google account. For each such device and application, you need to come up with an identifier, that is, a name.
Among the most likely devices/applications will likely be an Android smartphone/tablet (if available). We write a name for the password (for example, “My Android”), and then click “Create a password.”
The system will generate a password that must be entered instead of the current password for your Google account on your mobile device.
You will also need to create a password for the Chrome browser settings and settings synchronization feature (for example, named “Chrome Sync”). If you're using the standalone Google Talk app, you'll need a password for that as well. As a result, you will have a list of passwords with names. In the future, if necessary, you can change or cancel any of the created passwords for applications and devices.
What is 2FA?
Two-factor authentication or 2fa code is a method of adding an extra layer of security to your online accounts. Be sure to set up 2FA for your accounts on crypto exchanges to prevent them from being hacked.
Google Authenticator is software that implements two-step verification services using TOTP (Time-based One-time Password Algorithm) and HMAC-based One-Time Password algorithm to authenticate Google mobile app users.
Google Authenticator generates a one-time password of six to eight digits every few seconds. Users who have enabled two-step verification must enter the generated code along with their username and password to sign in to Google services. This software is not only intended for Google services and applications, it can also be implemented in third-party websites and applications.
Google Authenticator is free, fast and one of the most reliable services. It is available for both Android (Google Play) and IOS (App Store) users.
Most people use passwords as the only protocol for verifying their online accounts.
Related article: How to delete a gmail account from an iPhone
If the password they set is strong enough, then they are less likely to be hacked.
However, this is not the case for most users. Since many of us tend to forget passwords, we set passwords that are easy to remember. Unfortunately, such passwords are very easy for hackers to crack. To prevent this situation, it is recommended to add 2FA.
Typically, you simply enter your username and password to log into your account. By enabling 2FA, you will be prompted for an additional security key each time you log in.
This can be one-time password (OTP), email confirmation or SMS authentication.
By adding this additional level of verification, you will significantly improve the security of your account.
Description
Google Authenticator works with 2-Step Verification for your Google Account to provide an additional layer of security when signing in.
With 2-Step Verification, signing into your account will require both your password and a verification code you can generate with this app. Once configured, you can get verification codes without the need for a network or cellular connection.
Features include: — Automatic setup via QR code — Support for multiple accounts — Support for time-based and counter-based code generation — Transfer accounts between devices via QR code
To use Google Authenticator with Google, you need to enable 2-Step Verification on your Google Account. Visit https://www.google.com/2step to get started.