Each individual can access assets shared via family sharing through their own account, so they'd have access to those assets without having to rely on someone else getting the 2FA codes for the main account.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Upset I need to enable 2 factor Authentication to use AirTags
- Thread starter jsf721
- Start date
- Sort by reaction score
Look. We get it. Change is hard and you don't like or see the value in 2FA. I didn't like 2FA at first either and resisted it for years. Now I have it everywhere I can and wouldn't have it any other way.
Most good 2FA solutions (Apple's included) have reliable backup methods that you can use in an emergency. Apple provides plenty of ways for even the tech literate to avoid locking themselves out of their account. It can seem overwhelming and scary at first but I promise it's not. The information is available on Apple's website.
That said I don't understand why you feel the need to be so hostile, combative and dismissive toward other members of the community. None of us work at Apple, we're just trying to help you. You're allowed to disagree with/disregard said advice but I doubt you're going to convince anyone of your point of view by insulting them.
If you really feel so strongly about 2FA, send Apple an email or use their feedback page.
I don’t see how I’m being hostile, combative or dismissive, certainly not any more so than anyone else
Thanks for your somewhat patronising and passive aggressive reply though. I can assure you that just because someone points out obvious flaws in 2FA it doesn’t mean they are tech illiterate
I am very well aware of the other methods that can be used to unlock your iCloud account but thank you for pointing these out to me.
My points still stand that 2FA authentication is a deeply flawed system which is demonstrated by the fact that nobody has been able to provide an explanation of what you would do in the scenario I described earlier with a lost phone abroad etc
For me the risk of a scenario such as that far outweighs any benefit that 2FA gives (which is overkill anyway in the context of iCloud)
Thanks for your somewhat patronising and passive aggressive reply though. I can assure you that just because someone points out obvious flaws in 2FA it doesn’t mean they are tech illiterate
I am very well aware of the other methods that can be used to unlock your iCloud account but thank you for pointing these out to me.
My points still stand that 2FA authentication is a deeply flawed system which is demonstrated by the fact that nobody has been able to provide an explanation of what you would do in the scenario I described earlier with a lost phone abroad etc
For me the risk of a scenario such as that far outweighs any benefit that 2FA gives (which is overkill anyway in the context of iCloud)
Last edited:
It’s called planning in advance. Have you had a way to get to your email you could have used that route.
Yep, I get that for shared resources, but it's not going to change the behaviour if you're attempting to log an Apple ID onto a new device. (it's not like it gives the people in your family group the capability to authorize the connection).
Right but this would solve the OP's complaint that his son was waiting for a 2FA code to watch a movie. If the son had been using his own account, the 2FA code wouldn't go to the OP.
And therein lies the truth of it. Apple provides for just such a scenario - and in actual fact specifically doesn’t recommend sharing Apple IDs.
The OP is simply a victim of their lack of proper configuration.
When you got a replacement SIM card you could get a code sent by text to get you back up and running.
If you are going to travel abroad, it would be a good idea to add a trusted number to your Apple ID before you leave. It doesn't have to be an Apple device. It can be a landline of a family member, friend, or even a trusted business phone.
In my opinion, one would need to work very hard to get locked out of his or her Apple ID.
You have expended more energy trying to be obtuse regarding MFA than you would have expended reading up on how MFA works and how to ensure that you have appropriate methods to aid recovery. E.g. alternate email, phone numbers etc
If one doesn't exercise care and make use of being able to add additional trusted numbers and devices to the account, one could end up in frustrating situation of his or her own doing. Always be prepared. If Apple didn't offer multiple ways to get the 2FA codes, your post would be apropos.
But complaining is easy...!
OP is pissed about Apple's 2FA implementation. Meanwhile I'm pissed I can't lock down my apple account with my Yubikeys.
My wife thinks I'm insane for carrying a yubikey on a titanium chain around my neck.
Your wife may have a point but, it may not be due to the Yubikey.My wife thinks I'm insane for carrying a yubikey on a titanium chain around my neck.
I was in the Apple Store Pre Pandemic and one of the employees saw my Yubi key on my key ring and commented how he liked them and needed to get one. I though that was cool he noticed such a geek option whereas most people would have been clueless.
But I already explained the problem with other devices and trusted numbers. Granted the email option is valid
I guess for some people any criticism of anything related to Apple is hard to stomach. I’m pretty sure I explained a scenario in which 2FA would cause you more problems. In my opinion, it is more trouble than it’s worth
I don't have a problem with valid Apple criticism. I do such myself on occasion. My point was you have valid options and don't have to worry about being locked out of your account if you take the necessary precautions. If you don't want to turn on 2FA, that is fine. Just don't complain how terrible the feature is when you aren't willing to exercise a little effort.
Basically, your other family members have to set up their own Apple IDs (if they don't already have them). Once they have their own Apple ID, you simply invite them to be a part of your Family Sharing group. They will be able to access all of your iTunes purchases as well as share all of your Apple services subscriptions (TV+, Arcade, News+, iCloud Storage allotments, and also Apple Music if you're paying for a family plan for that one).
Apple has more information on what Family Sharing is all about, and also offers step-by-step instructions in this support article: Set up Family Sharing.
The only big catch is that they'll also be sharing your payment method, so any purchases they make with their Apple ID (apps, iTunes content, in-app subscriptions, etc), will go to YOUR credit card. They won't be able to add their own payment method. This is how Apple prevents the Family Sharing from being abused without having to worry about more draconian things like location restrictions.
However, they can also work around this by purchasing iTunes gift cards or adding money directly to their Apple ID — anything credit on their Apple ID gets spent first before it's billed to your credit card.
This is actually entertaining. 2FA is nbot to be avoided. Although MFA is more accurate.
Pretending you don't need it is like pretending Russian hackers don't exist. Fraud is on a rapid increase and becoming more automated. I am happy to not be worried about people hacking my account.
Of course passwords like $%5435fhjcnW are also ridiculous. They are no more difficult to hack than a word. They should be extending passwords and allowing people to use sentences they can remember without having to write them down on a sticky or in their wallets. My passwords are all 16 characters or more when it is allowed, and easy for me to remember.
Pretending you don't need it is like pretending Russian hackers don't exist. Fraud is on a rapid increase and becoming more automated. I am happy to not be worried about people hacking my account.
Of course passwords like $%5435fhjcnW are also ridiculous. They are no more difficult to hack than a word. They should be extending passwords and allowing people to use sentences they can remember without having to write them down on a sticky or in their wallets. My passwords are all 16 characters or more when it is allowed, and easy for me to remember.
I have provided an explanation - twice in fact.
You can log into iCloud and use the 'Find My' app WITHOUT 2FA. Hence you can remotely locate/lock/wipe your iPhone as normal without having to use 2FA at all.
You only need 2FA to access the rest of your iCloud data (in which case you would have your iPhone, or an iDevice with you?)
Honestly, there is no logical reason NOT to use 2FA. Not just with Apple devices - but with any device or system that offers it. I mean, why wouldn't you want your data as secure as possible, especially in this day and age.
I use 2FA anywhere I possibly can - my home CCTV system, my Ring Doorbell and Alarm system - just 2 other examples. Highly sensitive data where you would be foolish not to use 2FA......
Why can’t the user have a choice about this?
Listen: my Apple ID password is a fully-random string of letters, numbers, and special characters. Generated via rolling dice. I spent a day memorizing it and it’s not used on any other service. No one is getting that password.
I put in that work so I wouldn’t need a second factor. And now Apple is saying I need a second factor anyway?! How does this benefit me?
Most companies have implemented means of 2FA / MFA.
Your password, no matter how cryptic, does have the potential to be intercepted out there in real life. True, random character selection does minimize how easily brute force crackers can solve it, but it's also going to slow how quickly you type it in when you need to.
Then, of course, the question is - why do you need to resist having another layer of security protecting your account? In what way is this an inconvenience once you've authorized your devices?
And,yes, per my original point - the benefit to you is that you'll continue to be able to use all of the features of your device as it continues to play a bigger part in your digital identity as you navigate your environment.
If you haven't watched the WWDC keynote, you may be unaware that Apple is embracing putting digital ID's into your Apple Wallet (think your drivers license, health card, eventually passports, employer ID card). These entities will almost certainly require 2FA/MFA to ensure that this information hasn't been compromised in any way.
Your password, no matter how cryptic, does have the potential to be intercepted out there in real life. True, random character selection does minimize how easily brute force crackers can solve it, but it's also going to slow how quickly you type it in when you need to.
Then, of course, the question is - why do you need to resist having another layer of security protecting your account? In what way is this an inconvenience once you've authorized your devices?
And,yes, per my original point - the benefit to you is that you'll continue to be able to use all of the features of your device as it continues to play a bigger part in your digital identity as you navigate your environment.
By what mechanism? I’m not arguing—I think about these things a lot and I want to know if there’s a hole. The big one is phishing, but a secondary factor code doesn't protect against that as it can also be phished, unless I go exclusively with a proper Yubikey/TPM setup which is a major usability headache!
I do a ton of work inside of Virtual Machines which need to be re-setup each time. I also wipe my devices relatively frequently for various reasons.
But more than that, I'm very scared of being inadvertently locked out of my account! That seems like a much greater danger than an attacker somehow getting ahold of my extremely secure password!
I know you can print out backup codes but I have a very poor history of not loosing pieces of paper. That's a key reason I use computers as much as I do! Edit: And actually, reading through Apple's support page again, I don't think they even offer printed backup codes as an option.
Last edited: