Blog Post
Hi MYOBENQ , authenticator app is absolutely still available as an option, and ideally we would love for customers to have more than one method enabled. This change means that all customers must have SMS enabled, but they can also have a secondary method as well
HI Mike,
I asked earlier if we have the authenticator app do we need to set up SMS. I received this response from Doreen_P (MYOB Moderator). "Nice work getting the authenticator app up and running. That’s exactly what we recommend and there's no need to set up SMS 2FA. You’ll still have full access to your MYOB account with just the authenticator app."
Regards,
Learoy
Hi Learoy , thanks for bringing this to my attention.
This reply was incorrect in saying that there is no need for SMS 2FA
All customers will be required to have SMS 2FA set up but they can have (and we encourage) a second method as well.
In your case, this would be the authenticator app combined with SMS as two methods of authenticationBut as I said previously both of these forms of identification require a phone. What happens if a phone is lost or stolen, or even inadvertently left at home? Why can't we choose one of these & email. We are unable to add email now if we didn't previously. Sorry this is just silly
Is there a justification for this blanket enforcement of a fairly unsecure method when people already have to have a 2FA system in place? It's enough that 2FA has been forced upon us but locking people out of a system that they're paying for is a bit of a joke. If they don't agree does that mean they get a refund of their fees for the period that they're locked out?
