2FA via Authenticator - Now Fully Rolled Out!

You should disable 2SV in favor of 2FA, as only 1 is required and 2SV is less secure than 2FA

Oh alright, thank you, however, why is 2SV less secure than 2FA?

If you don’t mind me asking.

Amazing! This is definitely a huge upgrade in security. Thank you roblox for rolling out this amazing update.

Would be nice if this was also added to reselling limited items (we already have it when we spend a large sum on an item, don’t see an issue to have it for reselling as well)

Great finally more less hacks !!!

Finally! It was about time! I’ m using andOTP for 2FA. It is free, open-source and works great.

2FA is inherently better than 2SV as 2FA requires 2 separate factors of authentication instead of just one with an extra step (such as having your own phone’s auth app). If you have your email behind 2FA as well, I suppose 2SV could still be fine as in order to access the email you’ll need another factor anyways making 2SV really 2SV with 2FA on top of it.

I still hope at some point Roblox’s API switches to api keys and not cookie auth. As it stands if you get cookie logged somehow, even without logging into the account someone can still use the api and the cookie to do things without 2FA.

Thank you roblox, one of the best updates to the security system.

Nice! This is a much needed change.

This was MUCH appreciated, my account has been hacked about 3 times. Also just everyone’s vulnerability to being hacked is high as hell.

I really suggest the Microsoft Authenticator, I’ve had it for a while. It’s EXTREMELY simple to use, all you gotta do is sign in with an outlook or even anything line Gmail. Also you can sync your passwords and addresses for auto fill if you want…the app can ALSO be protected with Face ID, Fingerprints, ect with IPhones and maybe other phones aswell.

In my opinion, it is not clear that you can use integrated authentication in the iOS settings.

Maybe you have integrated authentication in your android device too.

Warning: 2 Step Verification via Email Codes is less secure than using an Authenticator App and will still be a choice during login. It is recommended that you turn off email verification if you will be using an Authenticator app.

I might disable the 2 Step Verification via Email for me.

I prefer using Authy. Their interface works perfectly well on mobile and desktop and I’ve had no problem using it for the past 4 years.

For me email 2fa is more secure, because this apps for autentification generate Automatly codes every 30 seconds, are there are low chances to someone to guess it.

I had the same question, maybe yes.

Happy that this was added. Enabled it a couple days ago, and it works extremely well. This will greatly improve user security. Thank you!

However, they have to know your password, too. Also, same with email, there is a low chance someone can guess email codes.

Its extremely unlikely someone will guess a 6 digit code that changes every 30 seconds.

Yea, but still exist chances, very very low chances. My password have 43 characters

If your password only consists of a-z and A-Z and 0-9, the chance guessing your password is 1.1994785e-73

This calculations don’t have to be precise, because the chance varies for example, when the password contains words that are in dictionaries.

It’s a billion times more likely to win the lottery than to guess your password, I think.