I wanted to add hardware 2FA to Apple ID, and noticed this particularly strange requirement.

I get that two keys is ideal (one as daily driver and one as a backup), but who actually REGULARLY uses both keys? Seems strange.

Can anyone who has this already setup shed some light?

  • 2xsaiko@discuss.tchncs.de
    link
    fedilink
    English
    arrow-up
    15
    ·
    1 year ago

    Are you talking about this?

    At least two FIDO® Certified* security keys that work with the Apple devices that you use on a regular basis.

    I think “the Apple devices that you use on a regular basis” is the part that belongs together.

  • Cotillion@lemmy.world
    link
    fedilink
    English
    arrow-up
    6
    ·
    1 year ago

    I have 3 keys. One is for regular use at home, second is with me on the go and third as a backup.

  • Delogrand@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    I ran into an issue with hardware 2FA enabled and a new phone.

    One of my Ubikeys is always plugged into my desktop, the other is on my keychain for wireless authentication with my phone.

    Apparently, only the most recently used hardware 2FA is allowed to authenticate wirelessly to add a new device. Since my other Ubikey wasn’t wireless the only recourse was to remove the hardware 2FA, add the phone and then re-add the hardware 2FA.