A phone can get stolen or lost, sim cards with the same number can be difficult to replace quickly specially in a big company where these things will have to be approve by someone else. Asking people to use their personal phone is not an option. People might need to access when they are abroad and why should they have to pay for International roaming. There are apps that can produce a 2 factor code why not use that.

A phone can get stolen or lost, sim cards with the same number can be difficult to replace quickly specially in a big company where these things will have to be approve by someone else. Asking people to use their personal phone is not an option. People might need to access when they are abroad and why should they have to pay for International roaming. There are apps that can produce a 2 factor code why not use that if sending a code by email is not secure enough?

It is imperative that we have a 2nd option to login - preferably email. We do not man our phones (often personal phones) 24/7, and with job share / part-time work, it is not realistic to assume login code will always be generated by the same mobile phone. Please update this urgently and provide a 2nd option.

There are so many scenarios that could have an impact on only one way of authentication.
Phone has ran out of battery
Left phone at home, not everyone has a need to carry a mobile all the time.
Job sharing
overseas support teams
There definitely needs to be an alternative way to log in. Being locked in to only one way of getting in will have an impact on our business should any such, and more scenarios take place. I understand the need for this, but most companies that put this in place has an alternative method in case of no access to preferred method, could leave people unable to log in.

We use Google authenticator at our agency for other software. Would be a good option.
The other idea we had at our agency was the option of a "master phone" so you can login with your text code or opt for the "master phone" which can log in anyone at the agency through a text to the licensee for example.

When overseas we cannot always use Australian sim cards so do not have access to the sms verification to log in. If 2FA becomes compulsory we should be able to login via an Authenticator app.

I agree. I work remotely and have been able to work while cruising using authenticator apps with other software. I have no idea how I'm going to be able to receive SMS messages on my next cruise. If it will work with Telstra wi-fi,the 5 minute time-frame will also be a problem with slow internet access.

For two factor authentication, we have an issue with this having to be done via a mobile phone. We have overseas support team members who's phone use is through the internet, not via a mobile phone number meaning that they cannot authenticate themselves. As mobile numbers also can't be duplicated across accounts this creates quite a nightmare for us. I would suggest that being able to also authenticate via email would be a great viable option please.

option to receive the code via email, instead of just sms