Lastpass mfa setup7/20/2023 ![]() But also, now a new option is open for me: I can programmatically generate the OTP tokens. Now if I break another YubiKey, or brick my phone, I can always generate codes using the secret key, or easily re-add it to my new phone. This Virtual MFA secret key needs to be treated securely because anyone with it can generate the one-time-passwords that I’m using for multi-factor authentication. I stored it in LastPass but it could have been stored on paper in a safe, or in Earthly Secrets. I set up a virtual MFA device in AWS and before adding it to google authenticator on my phone, using the QR code, I grabbed the secret key and stored it somewhere secure. (FYI: Previously this was often called 2FA, two-factor-authentication.) MFA Setup in AWS ![]() ![]() If you have something valuable online, something that can be stolen or turned into bitcoin you should set up multi-factor authentication for it. But Alex gave me a great solution to this problem – securely store the MFA secret key. Previously, I’d had a slightly bad time with YubiKeys: My computer fell and crushed my key. ![]()
0 Comments
Leave a Reply. |