<div dir="ltr">I use 1Password with a local vault, not their new cloud-based service (which has more account-recovery options, for better or for worse). My two factors are possession of my 1Password vault and knowledge of the master password to it. So the point of 2FA is not defeated by that setup, just delegated. The end result is more secure than SMS 2FA using a password I have to remember (and might mistype into a phishing site).<div><br></div><div>-Scott</div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Wed, May 25, 2022 at 10:01 AM William Herrin <<a href="mailto:bill@herrin.us">bill@herrin.us</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">On Wed, May 25, 2022 at 8:40 AM Scott Leibrand <<a href="mailto:scottleibrand@gmail.com" target="_blank">scottleibrand@gmail.com</a>> wrote:<br>
> Putting TOTP in 1Password makes login far more convenient than SMS 2FA, and almost as convenient as password-only, even for shared accounts.<br>
<br>
Hi Scott,<br>
<br>
Putting TOTP in 1Password alongside your actual password reduces it to<br>
1-factor authentication: access to 1Password. That both defeats the<br>
point of two factor authentication and makes your ARIN access<br>
dependent on a third party (1Password).<br>
<br>
Regards,<br>
Bill Herrin<br>
<br>
-- <br>
William Herrin<br>
<a href="mailto:bill@herrin.us" target="_blank">bill@herrin.us</a><br>
<a href="https://bill.herrin.us/" rel="noreferrer" target="_blank">https://bill.herrin.us/</a><br>
</blockquote></div>