Blog Post
Good morning MickyH75 ,
MYOB is doing what we can to provide security improvements that prevent unauthorised access to our customers software.
We are also ensuring that we are meeting all of the ATO's compliance requirements and continue to apply best practice security process to all of our software.
We are making this change easier for our customers by introducing the ability to have multiple methods of 2FA, and I recommend that you head to myaccount.myob.com to set up a secondary 2FA method as soon as possible.
2FA has always existed with our software and we don't provide the ability for customers to choose how this operates so that all of our customers are secure and meeting regulatory compliance standards.
The short version of this change is that previously, you had the option to 'trust this device' for 30 days, but from the 30th, this will no longer be available and 2FA will be required at least once every 24 hours.
Hi MikeG1 I could understand if this was rolled out just for the browser version but to make it for the desktop version as well seems over the top. We use SAP B1 for one of the companies in the group and it doesn't even use 2FA.
- MikeG14 months agoAdmin
Hi MickyH75 , there are a couple of extra points I can clarify here.
Thanks for your questions, I will update our main post about this change as well.
2 key messages/updates:- 2FA is prompted on login to your account, and not for each file
So changing between your 21 files after you have signed in, will not prompt for any further 2FA verification - This is only for online files
The comms does mention AccountRight Desktop, but we neglected to be specific this is only for online, if you have using a local, offline, desktop file in AccountRight you may not be prompted for 2FA
- MickyH754 months agoExperienced User
MikeG1I assumed it would be for log in only but still painful and it seems I'm not the only one that finds this unnecessary based on the comments on one of the other threads. We use Desktop but our files are online as we operate across multiple sites in different states and it saves having to connect via vpn between sites.
- Wiffco2 months agoCover User
This answer sounds really intelligent. Except, MYOB have made it so we basically can't do anything unless we are ONLINE. Can't process payroll and report STP unless you are online and that's just the beginning. And now from Nov 27th if we don't use MYOB for 30 minutes you are going to lock us out. Was that an ATO requirement?
- doublet2 months agoTrusted Cover User
yes I do have to deal with 2FA... I use two company files all day every day via desktop accountright. Online does not have the inventory capabilities that I need. I get quizzed apparently randomly about 2FA authentication when logging into both files - I generally am in them both concurrently all day as I am a one person band, and my husband is too, so I do both our books as well as everything else - so having to login every time after I go to the loo or help a customer is really a PITA. (My computer is secured in that time)
I also request that the login screen remembers the email address/login id as it is irritating and prone to typos. Even my internet banking across a variety of banks allows a dropdown login ids and remembers the password attached to that ID. Thinking about going back to a standalone accounting system if they still exist.
- 2FA is prompted on login to your account, and not for each file