I'm working away at convincing my wife to use strong passwords and 2FA. She popped me a "but what if" question that's got me stumped. Can someone help me please? The question is what one does if wanting to login to one's google account on a friend's computer or a library computer etc, if one's google account has one of those very strong passwords that 1PW creates.
We've got 2FA setup, including 1PW's OTP function, and yes we've also got a bunch of those backup codes. But if I understand correctly, the OTP or the backup code is entered after the main password. Is that correct? If so, doesn't that mean one would have to manually enter all 64 characters of the main password before getting to the OTP?
Does that mean one needs a shorter simpler password that might be less secure, on the basis that the 2FA will compensate for that? Or am I missing something?
A related question: could one get the OTP from 1PW on the phone? Or does that only work if logging in on the phone?
1Password Version: 7.0.4
Extension Version: Not Provided
OS Version: macOS 10.13.5
Sync Type: Not Provided