This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

How to force Google Prompt to ask "Match the number" during 2-Step Verification

Posted on 01-02-2023 06:56 PM
plee
Bronze 2
Bronze 2
Reply posted on --/--/---- --:-- AM

Hi,

CISA recommends using number matching to mitigate MFA fatigue.

Google 2-Step Verification ask the user to match the number sometimes.  

Is there an option to force Google's prompt to ask "Match the number" every time?  Thank you.

Here are the screenshots of how the match number looks in the Google app.

1.png

 

Snap77.png

 

Solved Solved
2 6 4,533
Jump to Solution
1 ACCEPTED SOLUTION

Posted on --/--/---- --:-- AM
ajojose33333344
Silver 5
Silver 5
In response to ajojose33333344
Reply posted on --/--/---- --:-- AM

@jonathan_gott  what you can do here is:

You might want to post this to the Feature Ideas section here. Doing so will allow it to be upvoted by others and possibly considered as a future feature enhancement.

If you do not already have access, you need to request it first. See https://www.googlecloudcommunity.com/gc/custom/page/page-id/Workspace-Feature-Ideas-FAQ#:~:text=How%... for how to do that.

Once you have access, go to https://www.googlecloudcommunity.com/gc/Feature-Ideas/gh-p/workspace-ideas-group . There, you can upvote and comment on any similar idea, or post a new idea.

Please share it here if you are planning to add it as a feature idea, but to be honest,the chances that google might consider this is less as there are more secured ways available already. 

View solution in original post

Jump to Solution
0 Likes
6 REPLIES 6

Posted on --/--/---- --:-- AM
ajojose33333344
Silver 5
Silver 5
Reply posted on --/--/---- --:-- AM

If you want the strongest security, it is authentication using security keys.

 

Jump to Solution
0 Likes

Posted on --/--/---- --:-- AM
jonathan_gott
Bronze 2
Bronze 2
Reply posted on --/--/---- --:-- AM

I would also like it to be possible to force this feature on 2FA.

Jump to Solution
0 Likes

Posted on --/--/---- --:-- AM
ajojose33333344
Silver 5
Silver 5
Reply posted on --/--/---- --:-- AM

@plee @jonathan_gott  "Google 2-Step Verification ask the user to match the number sometimes.  "

what happens the other times, you get prompted by another security option or none at all?

Jump to Solution
0 Likes

Posted on --/--/---- --:-- AM
jonathan_gott
Bronze 2
Bronze 2
In response to ajojose33333344
Reply posted on --/--/---- --:-- AM

Right now, Google Prompt will just give a "Yes" or "No" prompt option. To help with MFA fatigue, it would be ideal for it to have an extra layer that requires the user to recognize they are the ones trying to access their account. The number matching @plee describes would be ideal as it's already built into Google MFA in some instances. We would just like to make it have to be used whenever authenticating via 2FA.

Jump to Solution

Posted on --/--/---- --:-- AM
ajojose33333344
Silver 5
Silver 5
In response to jonathan_gott
Reply posted on --/--/---- --:-- AM

@jonathan_gott  Got it, thanks, I don't think that is possible.

The alternate option is you can use the "Authenticator app" which keeps on generating a new number every 60 seconds I guess.

and the most secure way with zero reported hijacking or hacking cases is a security key, google employees use this as the 2step verification method,(security keys are costly though)

 

Jump to Solution
0 Likes

Posted on --/--/---- --:-- AM
ajojose33333344
Silver 5
Silver 5
In response to ajojose33333344
Reply posted on --/--/---- --:-- AM

@jonathan_gott  what you can do here is:

You might want to post this to the Feature Ideas section here. Doing so will allow it to be upvoted by others and possibly considered as a future feature enhancement.

If you do not already have access, you need to request it first. See https://www.googlecloudcommunity.com/gc/custom/page/page-id/Workspace-Feature-Ideas-FAQ#:~:text=How%... for how to do that.

Once you have access, go to https://www.googlecloudcommunity.com/gc/Feature-Ideas/gh-p/workspace-ideas-group . There, you can upvote and comment on any similar idea, or post a new idea.

Please share it here if you are planning to add it as a feature idea, but to be honest,the chances that google might consider this is less as there are more secured ways available already. 

Jump to Solution
0 Likes
Top Labels in this Space
Top Solution Authors
View all