Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Is enable two-step verification for Apple ID important?

deany

deany

macrumors 68030
Original poster
Sep 16, 2012
2,873
2,086
North Wales
Talk Talks UK 4,000,000 customers just hit by major security breach.

Info compromised: names, addresses, dates of birth, phone numbers, email addresses, TalkTalk account information, credit card details and/or bank details.

Does the two step verification for apple ID cause any major hassle when buying apps keychain etc?

I also use msecure app as I think the main problem is same/similar weak passwords. msecure generates passwords for you.

just want to protect my apple stuff etc

thanks
 
Last edited:
LordQ

LordQ

Suspended
Sep 22, 2012
3,582
5,653
deany said:
thanks for your reply, so I just enable it via:

https://support.apple.com/en-gb/HT204152

and won't experience 'head aches' when buying stuff / logging in to keychain etc

just getting a bit paranoid of data theft.

cheers
Click to expand...
No experience here on two-step verification with Apple ID, but I use it with Outlook and the only pain is to enter your phone number to get the verification code. Not sure if the same happens with Apple, but an extra layer of security is always welcome.
 
  • Like
Reactions: deany
deany

deany

macrumors 68030
Original poster
Sep 16, 2012
2,873
2,086
North Wales
CarlosQG said:
No experience here on two-step verification with Apple ID, but I use it with Outlook and the only pain is to enter your phone number to get the verification code. Not sure if the same happens with Apple, but an extra layer of security is always welcome.
Click to expand...

thanks for your reply

anyone with iOS or OS X El Cap using safari have experience with two-step verification for Apple ID, enabled, in a typical day?
 
0

0000757

macrumors 68040
Dec 16, 2011
3,893
850
deany said:
thanks for your reply

anyone with iOS or OS X El Cap using safari have experience with two-step verification for Apple ID, enabled, in a typical day?
Click to expand...

I mean, it's the same as two-step authorization with any other service. The only time I ever have to get a code is if I go to iCloud.com (which I almost never do).
 
  • Like
Reactions: deany
deany

deany

macrumors 68030
Original poster
Sep 16, 2012
2,873
2,086
North Wales
chrf097 said:
I mean, it's the same as two-step authorization with any other service. The only time I ever have to get a code is if I go to iCloud.com (which I almost never do).
Click to expand...

thanks for your reply.

So its 100% worth it, in fact everyone should enable it?
 
0

0000757

macrumors 68040
Dec 16, 2011
3,893
850
deany said:
thanks for your reply.

So its 100% worth it, in fact everyone should enable it?
Click to expand...

I do it on anything that has my credit card information attached to it, or anything that I think might have very sensitive data.
 
  • Like
Reactions: deany
EdgardasB

EdgardasB

macrumors 6502a
Apr 14, 2014
618
80
Lithuania
deany said:
thats not good by the sound of it. I would complain to apple.
Click to expand...
I have complained to Apple for years, also to carrier which is official Apple carrier, no reaction :/ But what is interesting, iCloud keychain sms verification works for my country... o_O
 
  • Like
Reactions: deany
L

lemimouth

macrumors regular
Feb 14, 2015
205
159
I enabled 2 steps auth a while back, but suddenly 2 weeks ago iTunes and App Store on my Mac (El Cap) wouldn't accept my password ("unknown error"). Had to disable it
 
deany

deany

macrumors 68030
Original poster
Sep 16, 2012
2,873
2,086
North Wales
Just read Talk Talks customer data was not encrypted.

I'm sorry this is the 3rd attack on the company in 12 months and not to encrypt 4,000,000 customers data is a _disgrace_

UNACCEPTABLE.

The CEO 'smoothing it over' at around 00:48 seconds is also a disgrace.
http://www.bbc.co.uk/news/uk-34615226

Even my msecure data is '256 blowfish encrypted' & it cost a few quit years ago from the app store.

256 Blowfish:
As a public domain cipher, Blowfish has been subject to a significant amount of cryptanalysis, and full Blowfish encryption has never been broken.
....Well apart from gchq, nsa and Alan Turing they are excuded from this!
 
Last edited:
zorinlynx

zorinlynx

macrumors G3
May 31, 2007
8,353
18,580
Florida, USA
Two step Apple ID was a pain at first, but they've done a lot lately to fix it.

For a while you needed to generate app-specific passwords on OS X for things like FaceTime. This has thankfully been fixed in El Capitan.

Once a device is remembered it doesn't ask you to verify again unless something changes.

I recommend it. A lot of information is tied up in our Apple IDs, and it is good to have more protection than just a password. One example is iCloud Photo Library; if someone signs into your account they could see and manipulate your photo library. Not fun!
 
deany

deany

macrumors 68030
Original poster
Sep 16, 2012
2,873
2,086
North Wales
zorinlynx said:
Two step Apple ID was a pain at first, but they've done a lot lately to fix it.

For a while you needed to generate app-specific passwords on OS X for things like FaceTime. This has thankfully been fixed in El Capitan.

Once a device is remembered it doesn't ask you to verify again unless something changes.

I recommend it. A lot of information is tied up in our Apple IDs, and it is good to have more protection than just a password. One example is iCloud Photo Library; if someone signs into your account they could see and manipulate your photo library. Not fun!
Click to expand...

thanks for that, much appreciated its a 'no brainer', everyone should enable it then.
 
uhaas

uhaas

macrumors 6502
Aug 31, 2012
416
203
Boston, MA
Set it up. It's only a hassle for about 30 minutes, until you get your other devices up and running with it. It's worth it.

Then, go set it up on Microsoft, Google, LinkedIn, Amazon, Facebook, Twitter ....

It won't stop hackers from stealing your passwords from other places on the 'net, but it can help limit the damage if they do.
 
  • Like
Reactions: deany
W

windmill83

macrumors member
Sep 11, 2010
45
4
In iOS 9 two-step verification is being replaced by a new service called two-factor authentication (two-step verification will continue to work if you want to keep it). My question is if you are already enrolled in the old two-step verification service, how do you upgrade to the new two-factor authentication service? Do you have to turn off the old two-step verification before upgrading?
 
Last edited:
uhaas

uhaas

macrumors 6502
Aug 31, 2012
416
203
Boston, MA
I totally missed your question the first time.

Two-factor authentication:
https://support.apple.com/en-us/HT204915
(See the FAQs at the bottom.)

Two-step verification:
https://support.apple.com/en-us/HT204152

I'm using verification. It's not evident how to change, but one thing that goes away is the recovery key. It also looks like app passwords go away. Make sure you upgrade to iCloud Drive v5 if your using Windows.

From https://developer.apple.com/support/two-factor-authentication/: (May need a Dev account)
Can I enroll in two-factor authentication if I am already using two-step verification?
If you are already using two-step verification, we do not recommend attempting to enroll in two-factor authentication until the feature is offered to everyone.

More articles:
https://www.macrumors.com/2015/07/08/ios-9-el-capitan-two-factor-authentication/
 
Last edited:
deany

deany

macrumors 68030
Original poster
Sep 16, 2012
2,873
2,086
North Wales
Thanks for the info.

I get 'Two-Factor Authentication not available for your Apple ID at this time'

I live in the UK am on ios 9 and have been with apple for about 8 years.
Will try if it works on El Cap later.

Maybe country specific.

If it doesn't work I'll try the 'two step' (sound like a dance!)
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom