How to save a key for Google Authenticator

[ezavarov]

If you properly configure the security of mail / wallets / exchanges, you must install two-factor protection (Google Authenticator). During the configuration process, you need to scan the QR code so that the Authenticator application starts to generate unique 6-digit codes. And you scanned it, you added the key to the application, and everything seems fine.

BUT there is a moment - but what if your phone / tablet breaks, or you lose it, as on the new device to restore the codes Google Authenticator ?

1. You can make screenshots of QR codes when attaching two-factor codes, and hide printouts in the storage room (why not)

2. Use the online version of Google Authenticator, but if you break the laptop / PC, everything will go into oblivion (a bad option)

3. After losing the device, make a million tickets on all exchanges / wallets / mails, and spend months with technical support (very long, and not always efficiently)

4. And you can use special official programs that will help you decrypt the QR code and show you a unique secret key (a set of numbers and letters) that you can enter with the pens on the new device, thereby restoring access to Google Authenticator codes

For Android device owners

Application: QR Droid
Play Market: https://goo.gl/o8d9BH
How to use: run, scan the QR code when connecting two-factor protection. Next, you will see a text consisting of numbers and letters, eg secret=twwolj564uf7x4se6ft7t2hhfjh1c33v&issuer=Google

When setting up Gmail, all that's in the text after "secret=" and up to the mark "&", and there is your secret key.
When setting up other services: everything in the text after "secret=" and there is your secret key.

For Apple Owners

Application: QR-Code Reader
App Store: https://goo.gl/5VuLxh
How to use: run, scan the QR code when connecting two-factor protection. Next, you will see a text consisting of numbers and letters, eg secret=twwolj564uf7x4se6ft7t2hhfjh1c33v&issuer=Google

When setting up Gmail, all that's in the text after "secret=" and up to the mark "&", and there is your secret key.
When setting up other services: everything in the text after "secret=" and there is your secret key.

_______________________________________

Keep your keys separate from passwords, always have multiple backups, both on physical media and in print. In this case, in case of force majeure (loss of your electronic equipment), you can quickly restore access to your accounts on different services

P.S. Who helped to understand, you can click on +Merit

[1715364543]

1715364543

[Eddy49rus]

Where i can take a QR code?

[ezavarov]

Where i can take a QR code?

At the stage of connecting two-factor protection on any of the services that supports this option

[mithrim]

You could just use Authy.
Why? The answer to this is simple, you can make bachups and even use multiple devices at the same time!
No more fear of losing the phone in GA 2FA if you lose your phone and you didn't write the 16 string letters and numbers, you're just fu***d...

Features Of Authy (https://authy.com/)

Easy to setup 2FA for any account.

TouchID, Encrypted Backups and more to keep you secure.

Prevent account lockout when you lose your phone.

Sync 2FA across mobile, tablet and desktop.

Authy can be used I mobile and desktop also if you lose your mobile also the application can be used in desktop and it will automatically sync all your accounts in both mobile and desktop. This application can be used offline also and easily can be backup also and very user-friendly.

Authy vs Google Authenticator



Authy can be used onmultiple device whereas Google Authenticator is limited to 1 device.
Authy can be used on android, iOS mobile device, apple watch, desktop etc.
Authy can be used mobile as well as desktop while Google Authenticator is available only for smartphones.
Authy has password recovery option while Google Authenticator doesn’t have encrypted recovery backups.

The drawback: Authy (and SMS) are vulnerable to phone porting attacks

How to use Authy?

Download the application in mobile and desktop and setup the account with your name, email and mobile number.

After setting up the account open the application and open add account, now scan the QR Code from the website or enter the key manually. And finally enter the token code generated in authy your account has been secured with authy.

Here is a guide on how to use Authy on Binance: https://authy.com/guides/binance/

[NeuroticFish]

Why all the hassle? Most websites that ask 2FA also show the visible text with the seed (yeah, sometimes you may have to click separately for this, big deal).
The seed is plain text and you can save it safely onto a piece of paper. That's all you need for backup.
And you can test it too: in Google Authenticator, instead of scan barcode select "Enter a provided key", write TEST as name and the seed as key.
You'll see that the two generated codes are identical.

This is the safest method I know.

[alisafox2017]

Where i can take a QR code?

Hello. You can download it, but if you have a platform ANDROID, then download it on PlayMarket, If IOS - so on Appstore.

[tuanvu2412]

Tks you very much. This is very useful information for me

[ezavarov]

You could just use Authy.
Why? The answer to this is simple, you can make bachups and even use multiple devices at the same time!
No more fear of losing the phone in GA 2FA if you lose your phone and you didn't write the 16 string letters and numbers, you're just fu***d...

Features Of Authy (https://authy.com/)

Easy to setup 2FA for any account.

TouchID, Encrypted Backups and more to keep you secure.

Prevent account lockout when you lose your phone.

Sync 2FA across mobile, tablet and desktop.

Authy can be used I mobile and desktop also if you lose your mobile also the application can be used in desktop and it will automatically sync all your accounts in both mobile and desktop. This application can be used offline also and easily can be backup also and very user-friendly.

Authy vs Google Authenticator



Authy can be used onmultiple device whereas Google Authenticator is limited to 1 device.
Authy can be used on android, iOS mobile device, apple watch, desktop etc.
Authy can be used mobile as well as desktop while Google Authenticator is available only for smartphones.
Authy has password recovery option while Google Authenticator doesn’t have encrypted recovery backups.

The drawback: Authy (and SMS) are vulnerable to phone porting attacks

How to use Authy?

Download the application in mobile and desktop and setup the account with your name, email and mobile number.

After setting up the account open the application and open add account, now scan the QR Code from the website or enter the key manually. And finally enter the token code generated in authy your account has been secured with authy.

Here is a guide on how to use Authy on Binance: https://authy.com/guides/binance/

because of the vulnerability and do not use it. As they say - God protects carefully

[ezavarov]

Why all the hassle? Most websites that ask 2FA also show the visible text with the seed (yeah, sometimes you may have to click separately for this, big deal).
The seed is plain text and you can save it safely onto a piece of paper. That's all you need for backup.
And you can test it too: in Google Authenticator, instead of scan barcode select "Enter a provided key", write TEST as name and the seed as key.
You'll see that the two generated codes are identical.

This is the safest method I know.

with this there are complications on gmail (choice either to scan, or to write the key manually). As well as on the blockchain-info only qr code is provided

[wandino]

Thanks for this info

[Maldini07]

Why all the hassle? Most websites that ask 2FA also show the visible text with the seed (yeah, sometimes you may have to click separately for this, big deal).
The seed is plain text and you can save it safely onto a piece of paper. That's all you need for backup.
And you can test it too: in Google Authenticator, instead of scan barcode select "Enter a provided key", write TEST as name and the seed as key.
You'll see that the two generated codes are identical.

This is the safest method I know.

Same with me,, i like use this method, thats because  we can copy/paste the provided key and save as file.txt, as contact, or save as chat with your self on telegram for back up

For safety i like use method chat with your self on telegram for back up my provide key and save all private data

[0RajA0]

QR Droid will work only at the initial stage of two-factor authentication setup or can get the code for already setup two factor authentication? Please explain more....

[0RajA0]

Why all the hassle? Most websites that ask 2FA also show the visible text with the seed (yeah, sometimes you may have to click separately for this, big deal).
The seed is plain text and you can save it safely onto a piece of paper. That's all you need for backup.
And you can test it too: in Google Authenticator, instead of scan barcode select "Enter a provided key", write TEST as name and the seed as key.
You'll see that the two generated codes are identical.

This is the safest method I know.

I couldn't find the visible text of 2FA. Can we get the text code later or only at the time of 2FA setup ? Please elaborate it...thanks in advance

[NeuroticFish]

I couldn't find the visible text of 2FA. Can we get the text code later or only at the time of 2FA setup ? Please elaborate it...thanks in advance

In the same way the QR code is visible only at 2FA setup time, the same applies to the text too.
I made an example at BTER since it's one exchanges I don't really use, so even if I forgot to hide anything, I am safe.
The red hidden areas are: my user name, the qr code and the 2FA seed text. I hope that now it's clearer.
If the image doesn't load up at bitcointalk, you can see it here: https://talkimg.com/images/2023/05/14/blob18ad2eba67326e87.png

[ezavarov]

QR Droid will work only at the initial stage of two-factor authentication setup or can get the code for already setup two factor authentication? Please explain more....

QR Droid is a program that decodes the QR code itself, and displays your own key. If you have a screenshot of your code when you connect protection, just open the photo, and scan QR Droid

Why all the hassle? Most websites that ask 2FA also show the visible text with the seed (yeah, sometimes you may have to click separately for this, big deal).
The seed is plain text and you can save it safely onto a piece of paper. That's all you need for backup.
And you can test it too: in Google Authenticator, instead of scan barcode select "Enter a provided key", write TEST as name and the seed as key.
You'll see that the two generated codes are identical.

This is the safest method I know.

I couldn't find the visible text of 2FA. Can we get the text code later or only at the time of 2FA setup ? Please elaborate it...thanks in advance

For your purposes, use the programs described in the title topic