Multifactor authentication
RTM is my trusted GTD system; it contains a lot of personal/confidential information. I would trust it even more if RTM would use/allow multifactor authentication (a combination of something "I know" -my password- and something "I have" -unique physical item-).
Examples are the way LastPass uses the YubiKey/Grid, or Google's 2-Step Verification.
https://lastpass.com/support_faqs.php#yubikey
http://googleblog.blogspot.com/2011/02/advanced-sign-in-security-for-your.html
Examples are the way LastPass uses the YubiKey/Grid, or Google's 2-Step Verification.
https://lastpass.com/support_faqs.php#yubikey
http://googleblog.blogspot.com/2011/02/advanced-sign-in-security-for-your.html
lucasvdhaven says:
Yes this would be awesome.
I vote for two factor authentication for RTM!
Thanks for reading.
Luuc
I vote for two factor authentication for RTM!
Thanks for reading.
Luuc
(closed account) says:
agreed YubiKey, Verisign VIP (the one PayPal uses), or Google Authenticator would be cool... but I'm having a hard time imagining putting anything into RTM that would need anything close to that level of security... not voting either way on this one yet
michiel.schok says:
Or we could use the new kid on the block using QR codes: TIQR. completely Open Source.
https://tiqr.org
https://tiqr.org
(closed account) says:
+1 for 2 factor authentication possibly with Google Authenticator or SMS-texts.
keinech.tername says:
still no 2-step-verification? Come on!
nedk says:
Please add two-factor authentication.
(closed account) says:
Disappointed that there is still no multi factor authentication even in the year 2016! Using just a password is poor security nowadays. Not worth to loose all the tasks over a hack.
tomhall100 says:
+1 for Google Auth
(closed account) says:
+1
chris9140 says:
I vote for this. (RTM is the perfect app by the way - way ahead of the others)
charalew says:
We really need this now. Task list data is inherently personally sensitive and with the combination of greater computing power AND the greatly increased levels of hacking activity it's gone from being desirable to essential. ToodleDo has offered this for years as do most of the major Cloud Services e.g. DropBox, Google, Microsoft, PayPal, Amazon etc
charalew says:
Please add my vote...
(closed account) says:
+1
etairaz says:
It's 2017. Passwords are not considered a secured authentication mechanism anymore.
Guys, you really need to go ahead and allow MFA, like Google Authenticator
Guys, you really need to go ahead and allow MFA, like Google Authenticator
quantumghost says:
Please support U2F
(closed account) says:
Two-factor, please.
carlosleitao says:
Hi!
Respectfully, I do not understand why this subject is being discussed yet.
We all know how easy is to crack any service.
The only option to give us some safety (some!) is 2FA.
Please, Bob, prioritize this job for the next few months.
Or we are waiting for an attack to take action?
Respectfully, I do not understand why this subject is being discussed yet.
We all know how easy is to crack any service.
The only option to give us some safety (some!) is 2FA.
Please, Bob, prioritize this job for the next few months.
Or we are waiting for an attack to take action?
carlosleitao says:
Bob,
You there?
You there?
ikbenreinder says:
Would be awesome if RTM supported U2F. A fido U2F hardware key with Google Authenticator as a fallback would be the best implementation, in my opinion. The app as a fallback for browsers (such as Firefox) that don't have U2F built in (yet). I use a hardware U2F key from Yubico with my Gitlab account. It's really easy to use.
wattonen says:
+1 Google Auth
wwoolrich says:
I'm with ikbenreinder. The Yubico U2F key is super easy. Please implement this.
(closed account) says:
RTM, please consider this feature...and soon.
andreas.fritz says:
+1 for 2 factor authentication
(closed account) says:
This feature for such a tool is essential. And it was requested 7 years ago.
(closed account) says:
we need this
squickel says:
OK, so go to the top of this thread. You've had requests for 2FA since 2011!! And the latest request was just 9 days ago. This really needs to be prioritized, especially with all the hacking going on around us.
brian.waismeyer says:
Any updates here? I mistakenly assumed RTM had 2FA and I'm sadly going to have to migrate without it. I don't put much sensitive stuff into my account, but I'm also uncomfortable with communication/tracking software that isn't 2FA protected as a rule of thumb.
dave.liao says:
Hopefully two-factor authentication is in the works? A lot of your competitors lack 2FA, so this would be a good differentiator.
zurbit says:
+1 for 2 factor authentication - thank you !
olsansky says:
Yes please add 2FA, I bet you've heard of Twillio!
andres.riancho says:
Please add 2FA!
(closed account) says:
Please, please add this...
(closed account) says:
+1
(closed account) says:
Why didn't you implement this really important feature up to now? Tasks could be very personal, so additional security is key!
calvinyu says:
2FA is an essential feature for an app which would record very personal information. Please add 2FA.
olsansky says:
Please add 2FA
drbunsen says:
+1 for Google Authenticator (which means TOTP - that is the simple protocol that Google Authenticator uses, but there are many more clients as this is an open standard)
+1
One use case (besides general higher security): I am often working on site at different customers. Many of them do SSL termination at their proxy servers in order to be able to scan for malicious Internet traffic. Therefore they would be able to log user credentials and afterwards use these credentials to login to RTM. With 2FA enabled they still would not be able to login as they do not have the second factor.
One use case (besides general higher security): I am often working on site at different customers. Many of them do SSL termination at their proxy servers in order to be able to scan for malicious Internet traffic. Therefore they would be able to log user credentials and afterwards use these credentials to login to RTM. With 2FA enabled they still would not be able to login as they do not have the second factor.
ksawie says:
+1 Need it for security policy of my company
iamjeffcohen says:
Yikes
lawwrence says:
Another vote for MFA. This feature is standard by now.
(closed account) says:
I am a new user to RTM. MFA is the one thing I miss from my old task management system. Because RTM does not have MFA, I’m choosing not to keep sensitive personal information in the system. It would be much more useful with MFA. Thank you for considering it!
zehment says:
2 factor would be absolutly great!
emalf13 says:
2FA is a MUST these day. Please can you implement.
testds says:
Please add 2FA. Please add 2FA urgently.
We're into 2021, it's not acceptable for a service like Remember The Milk, to not to have this type of standard protection.
We're into 2021, it's not acceptable for a service like Remember The Milk, to not to have this type of standard protection.
pedersonjm says:
Please add 2FA/MFA with a Google Authenticator option(instead of SMS)
(closed account) says:
I think 2FA is the trend for account security. Please add 2FA options for us. It's really important to keep our personal data safe.
markhopwood says:
I really want MFA on this, especially as it has access to my Gmail through the add-on.
(closed account) says:
I agree that 2FA would be valuable, though I think we should steer clear of trying to "guilt" or "demand" features of the developers. They are busy with lots of requests and updates and they're doing a fantastic job with RTM. Let's make our requests known through these forums and then leave it to the development team to keep on developing at their discretion.
(closed account) says:
+1 for MFA.
dmather says:
+1 for MFA
(closed account) says:
MUST have
Red Hat FreeOTP is... free !
Red Hat FreeOTP is... free !
Re 2FA.
Really, devs. RTM is looking really out of date (Oct 2022) for a personal/work data app.
As time quickly moves on you're going to lose strong users & advocates like me if you don't have 2FA.
Come on, move with the times and put it to the top of the queue BEFORE A HACKER DOES and your competition squeals on you. That's hard to recover from.
Really, devs. RTM is looking really out of date (Oct 2022) for a personal/work data app.
As time quickly moves on you're going to lose strong users & advocates like me if you don't have 2FA.
Come on, move with the times and put it to the top of the queue BEFORE A HACKER DOES and your competition squeals on you. That's hard to recover from.
listliker2020 says:
Please implement the option for Two-Factor Authorization, at least for notifications when a password is changed. Knowing someone's current task, as in the things they are currently checking as complete, can give location information or at least signal whether or not someone is home. For example, marking as 'done' for items on a shopping list. This ties into personal safety.
(closed account) says:
Did already voted once for this one ! On todays world and security issues : O-B-V-I-O-U-S
First requested 11 years ago. Consistently requested as late as 6 months ago.
It’s very easy to implement as an option.
What is more important than your users’ personal and business data?
I have to wonder if you have some motive for NOT implementing MFA. It’s not the workload for sure. You stand to be sued with a class action lawsuit if your system is hacked and our data published.
It’s very easy to implement as an option.
What is more important than your users’ personal and business data?
I have to wonder if you have some motive for NOT implementing MFA. It’s not the workload for sure. You stand to be sued with a class action lawsuit if your system is hacked and our data published.
kmkurn says:
More than 10 years requested and still nothing on the roadmap it seems. Time to consider migrating I guess!
manuel.studer says:
Definitely important this one.. make us a present rtm team. Your app is already important and awesome
nwhuizen says:
MFA is quite essential to me, please prioritize this feature!
mrcombin says:
It time to do that! App without 2fa in 2k24 it is nonsense!
Please add in this feature. It's one of those things that if I don't have it within the next year I'll have to move over to a system that does (do to multiple scam attempts on my data from multiple sources). I've been a customer for 10+ years and I'd hate to move away for this reason.
Log in
to post a reply.