If you use Google Authenticator to log into sites using 2 Factor Authentication, how do you log in after you lose your phone?
Can you install Google Authenticator on another device?
Asked
Active
Viewed 687 times
2 Answers
3
You can install Google Authenticator on another device. However, that new application will not have access to the prior secret shared between the server and your phone.
In Google's case, they recommend printing out backup passwords and keeping them somewhere safe in the event anything happens. It is up to other sites using Google Authenticator as a means of 2FA authentication to provide similar ways of recovering from such a loss. The HOTP and TOTP algorithms themselves do not allow for any recovery.
1
During the enrolment procedure Google provides you with a set of 8-digit "one-time scratch codes" which you should print out and keep in a safe place. If you lose your phone, you can use these scratch-codes to log in to your infrastructure and to enrol a new device.
mricon
- 6,238
- 22
- 27
-
According to https://security.stackexchange.com/a/167580/10390 these codes are account specific though, so they help you recover access to your Google account, but not to other accounts set up to use Google Authenticator. I'm not 100% sure as to whether that is correct though. – Highly Irregular Sep 27 '17 at 21:49