Read first: Previous version support information

Google accounts not showing in Inactive 2FA

Options
cdnnascarnut
cdnnascarnut
Community Member
in 1Password 7 for Windows

I have a number of Google accounts without 2FA enabled that are not showing up in the "Inactive 2FA" section in Watchtower? I do not have any tags like "2fa" on them, so I don't understand why they aren't showing?

1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Sync Type: Not Provided

Comments

  • ag_ana
    ag_ana
    1Password Alumni
    Options

    Hi @cdnnascarnut!

    What is the value of the website field for these items?

  • cdnnascarnut
    cdnnascarnut
    Community Member
    Options

    https://accounts.google.com/

  • Blake
    Blake
    edited January 2020
    Options

    Any websites (such as google.com) that correspond with a website that offers 2FA to it's users, but do not have 2FA configured via 1Password will indeed be flagged with "Inactive 2FA" per Watchtower's design.

    I highly recommend configuring and using 2FA for any and all logins that support it.

    You could always disable the ability for Watchtower to Check for inactive 2FA by turning off the appropriately-named setting within 1Password for Windows.

    • Click 1Password in the top-left corner of 1Password for Windows.
    • Click "Settings" or hit F9 on your keyboard.
    • Click "Watchtower" from the pop-up context menu.
    • Click "Check for inactive 2FA" to disable Watchtower from checking for websites that support, but don't have 2FA enabled via 1Password.
  • cdnnascarnut
    cdnnascarnut
    Community Member
    Options

    Hi Blake,

    I think you missed the point.

    My google accounts were NOT showing up in Watchtower and I don't understand why!

    I have enabled 2FA on all once I realized the issue. I would like to understand why they don't show up and ensure that I am not missing other accounts via Watchtower.

  • Blake
    Blake
    edited January 2020
    Options

    Apologies about that, I misread the "not" part there! 🤣

    It's very possible that Watchtower hadn't updated it's findings since those items were added to your Vault.

    You can manually force Watchtower to update and ensure all of the items that should be marked as inactive 2FA by going the same context-menu I described above and clicking "Update Now"

    Outside of that, ensuring the items within your Vaults contain the correct URL's rules out just anything we might have overlooked.

  • cdnnascarnut
    cdnnascarnut
    Community Member
    Options

    I read another post on the forum about this. If I understand correctly, Watchtower pulls URLs from https://twofactorauth.org/. There is nothing for accounts.google.com, but mail.google.com, fit.google.com, etc. If I make the primary URL entry one of the ones listed on https://twofactorauth.org/, it works the way I expect.

  • Blake
    Blake
    Options

    Watchtower does indeed pull from https://twofactorauth.org/ but even I did not realize that accounts.google.com was not included in that database.

    We both learned something here, then. 😊

This discussion has been closed.