No offense, but this is an insane question 
5 Likes
Let me exclamatize this part
ou will be asked to use a mobile or tablet device that is already logged into your Roblox account to approve or reject the login. The prompt will also provide details about the login attempt like device type, regional location, IP address, date and time. This prompt serves as an extra layer to help secure your account.
sorry I just had to do a meme
Does this mean that we won’t be able to login to our account if a mobile device isn’t logged in?
5 Likes
I would probably assume it would only show up if there is another device logged in. If it isn’t, I assume it would send the email since I’m pretty sure you are required to put an email when signing up
We are saved by two step verification
1 Like
But I could be wrong. Don’t be confident quite yet.
2 Likes
Carbon-copy: @poggodoggodude
Anytime I send a friend request on Discord from my phone, I have to do some things:
- Solve captcha No. 1
- Get logged off on all devices
- Log on from my phone
- Verify my email address
- Solve captcha No 2
To send messages to my new friend, I must:
- Solve captcha No. 3
- Get logged off on all devices
- Log on from my phone
- Verify my email address a second time
- Solve captcha No 4
This is happening because I use Discord’s mobile website on my phone and often browse on LTE. Maybe this is unusual behaviour.
With LTE, my IP address would be changing multiple times a day.
I don’t like downloading apps for websites which would reside on my web browser anyway.
I fear that a similar situation could happen – let’s say – if someone is using an LTE hotspot to connect their Windows machine to the internet.
2 Likes
I later found that it did some more hidden explaining inside post 1 of how it would work if you didn’t have a logged in device and it mentioned two step.
3 Likes
But wouldn’t it be more convenient anyway to just press a button to immediately open the app without fail than have to open one app and type in an entire url and potentially mess up and have to look where you made a mistake? I mean sure it takes up storage, but convienience matters sometimes
3 Likes
All I have to do is navigate to https://discord.com. It is saved in my link history, so there is no need to type all of it out on my …
Surface Duo’s multimodal keyboard.
Storage also isn’t an issue for me. My phone holds 128 GiB of space. Browser apps are easier to debug (especially if you’re using Kiwi Browser).
3 Likes
oh my sigma! this is such an AMAZING UPDATE!
3 Likes
Okay, this is a really cool update, thank you. Also: SurfaceAppearance.Color when?
2 Likes
2SV really is a bad idea for…. Well any company due to outlook banning emails for not using the account and Roblox is refusing to remove the email from my account making EVERYTHING impossible to do on Roblox. Can’t do group payouts. Login. Or even appeal! Microsoft even refused to regen the email.
3 Likes
dose this well need it i know some games get hack but what if hacker use that person email? then how do guy or her get Roblox acc back?
3 Likes
Thank you for doing more to protect the security of our accounts. We need more of this haha.
5 Likes
Oh right, unless its using the apps.
3 Likes
This is amazing update, but do you plan on adding Hardware Security Keys support for mobile devices? Phones can already use them without an issue both on Android and iPhone devices, thru NFC or USB-C (or even Bluetooth).
Apps like Discord allow this, which is certainly amazing as on Discord I can have only my hardware keys and disable TOTP entirely. With this change (and the login using code) there’s no reason that I can see for not allowing just hardware keys and disabling TOTP entirely.
5 Likes
So what would happen if we dont have a second device? Are we just 
or do we contact support and ̶g̶e̶t̶ ̶n̶o̶ ̶h̶e̶l̶p̶ ̶a̶t̶ ̶a̶l̶l̶ wait until we get a response?
Other than that concern I’m really happy. Better account security is something we needed the most and yall delivered.
4 Likes
How, or how does Roblox detect when a suspicious Login attempt(s) is made on your account. What is accounted for when deciding whether it was a suspicious Login attempt that was made or not?
3 Likes
They might detect a suspicious login by the location of the device being different from yours.
4 Likes
I’ll have to send the following post again to make sure that @poggodoggodude sees it:
What if I choose to not explicitly enable twenty-two-step authentication because it’s so inconvenient?
I want there to be an option to enforce exactly one step at all times (at the risk of my account’s safety.
Please refer here for additional context:
2 Likes