Add your home phone and/or a friend's phone number in the 2FA settings as trusted numbers. Then even without your phone, you could still get in. I have both my home phone and my daughter's mobile (SMS) number on there.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
How to Secure Your Apple ID Using Two-Factor Authentication
- Thread starter MacRumors
- Start date
- Sort by reaction score
I remember only two step needs a recovery key.
-------------------------------------------------------
Guess I need to have two iPhones if I want to even try out 2FA. And I am not sure if there is a way to turn off if I don't want to use 2FA anymore. The cost of being safer is a bit too high.
If you lose your phone or only have one device, your option is to have the security code texted to you via SMS to any of your trusted numbers. If you select the “I didn’t receive a code” option when the prompt shows up you’ll be able to select the SMS option instead of the push notification to a trusted device. You can text it to a new device (if you kept the same phone number) or be RESPONSIBLE and put two trusted numbers. Preferably your Google Voice if you’re so concerned with being emailed a code.
My goodness. What an uphill fight to get people to take responsibility for their stuff and be adults ¯\_(ツ)_/¯
My goodness. What an uphill fight to get people to take responsibility for their stuff and be adults ¯\_(ツ)_/¯
Uhhh, this article fails to note a pretty big aspect of 2 factor authentication (when you have iCloud keychain also turned on, at least), which is that when you turn on both iCloud keychain and 2FA Apple stores the DEVICE password for all your devices remotely on its servers (including any Mac you have signed into iCloud, whether you have FileVault turned on or not, and whether you’ve chosen to store a recovery key with iCloud or not...).
That’s a pretty big hiccup. It allows any device to be remotely wiped/locked/unlocked by Apple (or any third party Apple gives access to). I don’t need a thief to have access to my data, or some cop who’s arrested me at a protest or something but now wants to see my iMessages with my pot dealer.
Why wouldn’t MacRumors include this info in their article? The only message Apple gives you is a vague confirmation explaining why they want you to input your device password (not iCloud password) when you enable the service in iCloud settings.
That’s a pretty big hiccup. It allows any device to be remotely wiped/locked/unlocked by Apple (or any third party Apple gives access to). I don’t need a thief to have access to my data, or some cop who’s arrested me at a protest or something but now wants to see my iMessages with my pot dealer.
Why wouldn’t MacRumors include this info in their article? The only message Apple gives you is a vague confirmation explaining why they want you to input your device password (not iCloud password) when you enable the service in iCloud settings.
Last edited:
Wish Apple would use a push prompt like google prompt instead of the code it’s sends out. I tend to hit ok too fast or get the digits wrong and there’s no way to get it back short of going into settings, iCloud, security and get verification code. What a pain. A simple ok would had been fine. Apple should show the map and IP address of login and provide a yes or no, done. Codes are so yesterday.
Due to my legacy Mobile Me account, I have one email for my purchases and another for my iCloud. I have 2FA enabled on my iCloud account. When I signed in to my “purchases” account, I still had two step enabled so I turned it off. Now I can’t figure out how to enable 2FA on that account. Help?
https://support.apple.com/en-us/HT207198
https://appleid.apple.com/
Just sign it at the same AppleID page and change it there.
Doesn’t work that way. Logging in there and clicking “enable 2FA” directs you to enable it via your iCloud account on your phone or Mac. Which in my case is the other Apple ID. I ended up just re-enabling two-step.
I appreciate the benefits of 2FA, but have never enabled it as I am concerned that it might be very inconvenient in key circumstances. Imagine I'm on holiday. I loose all my stuff and make my way to an internet café. How do I log into iCloud.com to get access to my (emergency) Contacts?
Is nobody else concerned about this scenario? Do you have any workarounds?
Is nobody else concerned about this scenario? Do you have any workarounds?
I mentioned earlier I have my daughter's mobile number in there as a backup trusted number. So if I was on vacation and lost my phone I could go to the grocery store or wherever and buy a burner, then call my daughter and have her give me the six digit code when I login to icloud.
I appreciate your reply. I remember my home number from 30 years ago, but not so more recent ones. I think I'll have to keep swimming against the tide for a little longer (until the desirable iMessages in iCloud tempt me into 2FA again).
I have a few older Apple devices, including Apple TV units and an older iMac, that run operating systems not supported by 2FA. Does anyone have a good workaround for those devices, which keep prompting approval but are incapable of entering the security code and therefore seem to be in a loop that cannot be resolved? I recall formerly being able to input "trusted devices" in my Apple ID profile, which would resolve this issue. However, it does not seem that you can do that nowadays for older devices (which in my view would easily resolve this problem). Please share any suggestions.