Ready for the next step to up your Internet security game? Our goal with this step is to keep your password from being a single point of failure.
I took a cautious approach to implementing Google Authenticator (GA). I was concerned about locking myself out of an account, so I invested a little time up front to study it.
GA is just one option within Google’s 2SV program. You can make a choice of how you want to get the codes (each consisting of a six digit number) when you need them:
- Sent to you by text message (SMS)
- By receiving a phone call
- Via the Google Authenticator app
- Using a list of pre-printed codes you can carry in your wallet
Also, during sign in, you can tell Google not to ask for a code again on that web browser. This will cut down on your workload and is fine if you don’t share your computer.
Then, I followed the instructions to enroll my Gmail account. As a precaution to losing my phone, I set a backup phone number (my wife’s) and I also got some pre-printed codes that I’ve put in a safe place.
My first big surprise came when I tried to check my email from the Gmail app on my iPhone. Within the app I got prompted for my user ID and password, and then for my 2SV code. Here are some tips:
- You can switch over to Google Authenticator by double-clicking on your iPhone button and scrolling to the right.
- Or, you can press the button once and then tap on the icon wherever it is on your iPhone desktop.
- Note that the codes change every 30 seconds. The codes themselves turn red when they are about to change. There is also a small count-down clock on the right-side of the screen (see screen shot below) so you can get an idea of when the codes will change.
- Quickly memorize the six-digit code, then switch back to the Gmail app, and enter it.
The next day I noticed my Calendar iPhone app wasn’t updating. I quickly realized 2SV was stopping me, but I didn’t know how to enter a code. Turns out I had to enroll my Mail and Calendar apps by using an application-specific password. It’s not very difficult so just follow the simple instructions.
Are you ready to implement Google Authenticator? Why not? If you did already, how did it go for you?