Hi everyone, I’m updating this post (2:30pm AU 21/11/24), as there have been a lot of comments and engagement in the change. With over 100 comments on the post, we are starting to get the same q...
Updated 7 hours ago
Version 4.0
Blog Post
Hey David2ayo
You will only be required to sign in again after 20-30 minutes of inactivity, not every 30 minutes. If you are logged out due to inactivity, your email address and password will be required to access your file again, not 2FA. More information can be found on this page!
2FA should be renamed 3FA because logging in each day is a 3 step process ..... 1. username, 2. password and 3. authentication .... After every 30 minutes of inactivity (by the way the ATO "would prefer" every 15 minutes! so that will be on the horizon!!) one has to follow a 2FA 1. username - fully type in the username (typically email address) because there is no "auto prediction" available .... and then 2. password... I have just had 2 major databases (one a Government database [we have an account with this database and have to sign in], the other financial) open on my desktop with no activity for 45 minutes with NO ACTIVITY (I put a timer on to be sure) and low and behold was NOT logged off 🤷♀️🤷♀️🤷♀️ can someone explain that please?
Good morning RuthCO , the inactivity change comes into effect from the 27th November so you wont have been signed out when testing it yesterday.
I can also confirm that we have worked with the ATO when implementing the change and although their recommendation is 15 minutes we are within their requirements doing 20-30 minutes
