I WANT TO TURN OFF TWO FACTOR VERIFICATION!!!!! It is a total pain in the butt and I want the option to turn it off. Help!!!!! How can apple not allow us to turn this time-suck feature off? I want to register my frustration.

I'm getting asked every single time I log into iCloud to verify. This is getting soooo redundant, I have to enter a password, and then fish out my phone for a six number verification. So exhausting and an awful design.

What device are you logging into iCloud with? If if's a Mac, make the Mac one of your trusted devices. Then, the code will be sent to your Mac. No fishing out your phone required.

You can use any SMS enabled cellular telephone number as a backup number. The make model or operating system of the device using that number doesn’t matter. You can also use any landline or VOIP number (a Google Voice or Skype number, for example) to receive codes by voice.

Your backup device does not need to be an Apple device. I use a Google Voice number as my backup and can receive codes on it by voice, or as an SMS text, which I can access and read from any web browser on any platform.

You seem to making 2 points.

In terms of ease of use, 2FA is easy to master once understood and accepted. Millions of normal users deal with it daily.

In terms of your choice to use 2FA, your point is valid, but Apple seems adamant the feature is here to stay.

As you can likely tell, this community is not the place to debate your concerns.

Feedback for Apple goes here >>> http://apple.com/feedback

Did you know you can add an addition trusted number to your account? Go to settings>tap name>tap name, phone number, email>under 'reachable at' tap 'edit'>tap 'Add Email or Phone Number'.

When Two Factor is turned on, you receive an email stating that Two Factor is now enabled. That email also states that one has the option to opt out of Two Factor within the first '14 days' by clicking the link contained in the email. The email is simple and straightforward.

When you enable two factor authentication, an email is sent to you stating that two factor has been enabled. The only way to opt out of two factor is to access the link in the email within 14 days from the date two factor was enabled.

once you buy an apple product, you have to travel with 2 devices or be at risk of being locked out, which is beyond stupid. If someone wants this security it should be a choice.

Not at all accurate. This twice now you have misstated the truth to make your point.

Add a trusted phone number in addition to a trusted device.

This extra number can be a landline, an Android device. It will allow you to get verification codes in the event you lose your trusted device.

Apple says that once you have verified a device you never have to do it again.

Support has told me repeatedly, phone and chat.

It is highly doubtful to me that Apple support has repeatedly told you the wrong thing.

See >>> https://support.apple.com/en-ca/HT204915

VPNs can also cause repeated requests for verification codes. If your device's IP address changes, iOS detects this and may ask you for a new verification code to validate your identity.

deenafrommilwaukee wrote:

I have the same problem. Turned it on recently by accident not realizing what it was. What a pain in my a*%!! I want to switch songs while listening to Apple car play and every coupe of secs, I have to put in my 4 digit code. That's a sure way to get into a accident!

Then there is something wrong with your set up. You only need your 2FA code when signing into your Apple ID. It sounds as if what you're being asked for is the lock code for your phone.

Anyhow, I think I have a temporary fix. Go into your original email where you set it up. In that email it will allow you to turn it back off but it states for only 2 weeks.

Yes, that was noted in the original answer to this thread back in September.

I turned it off but it is still making me use my 4 digit code!!! Annoying! I have been eligible for an upgrade for a long time. I will probably switch to Android.

If you turned off 2FA and are still being asked for a code, the code is for something different.

IdrisSeabright wrote:

Never give anyone else access to your personal Apple ID. Never store personal information on a work Apple ID.

Seems like this goes against the common advice I've been reading here, which is to enter in a friend or family member's phone number as an alternate trusted device. This seems like a horrible way to keep things secure, given that you don't know how careful other people (even trusted people) are with their own security. There was recently a paper published from Princeton security researchers that demonstrated how easy it is to hijack someone else's phone number in the US. I would love to enable 2FA on my account for improved security, but I'm extremely uncomfortable with the fact that I have no reasonable backup access that's purely in my control (e.g. how google lets you print out a page of backup keys).

I know I can designate my mac as a trusted device, but that seems extremely shaky given that it's based on saving browser cookies when I access iCloud.com. As far as I can tell, the only way to have a backup 2FA method that's completely in my control is to buy a backup iphone.

My day job is cloud security, and as far as I can tell, Apple's story on iCloud 2FA is a combination of really strong security with very little attention paid to how it can practically be used in a safe and secure manner.

For this reason, I prefer to turn it off, and I think everyone should have that choice. That is what all the outrage in this thread is about. People didn't know what they were getting themselves into, because there are places in the iPhone/iCloud user interface which tell you it's required (e.g. if you want to sync iMessages to iCloud), and they don't tell you the consequences of turning it on. I myself am quite security conscious, so when I was told I needed to turn it on to sync iMessages, I thought "well of course 2FA is an improvement" and went ahead. However, when I realized this effectively blocks my ability to ever use Find My iPhone (I don't have another trusted phone number and my mac browser cookies are not reliable as a backup for something so critical), I decided that was a step too far and decided to go back to normal password auth for iCloud. It was quite a shock to learn that that's impossible. I did get lucky and change my mind before 14 days was up, but the restriction is just silly. If I hadn't made the 14 day cutoff, I would have just created a whole new iCloud account and taken the hassle of transferring everything over to it, so what's the point of forcing me to do that?

doesn't seem to be evident from going to iCloud.com. How is a user intended to find this information?

If you attempt to sign in to cloud.com and need the verification code, the dialog below will be available to you.

Elect the Find iPhone option to bypass 2FA for a one time exception.

iCloud/com/find does this as well. Can't recall where I saw this, but it is documented somewhere.

That has ZERO relationship to my issue. I get the code sent to my iPhone AND iPad. The problem is that the OS is requesting the code, but not allowing me to enter it.

In order to change what is (currently) syncing to the computer (because it is logged into iCloud) I have to enter my iCloud password. I enter it, and the log in window disappears... then, I get the code on the “trusted device” and there is nowhere to enter it on the computer. The login dropdown vanished as soon as I entered the password (which prompts the 2FA code to be sent). It’s an endless loop. I’ve lost all control over what is syncing (or not) on both of those computers. What was already set to sync before whatever changed, still syncs. I just can’t turn a feature on or off anymore, because I can’t access my own settings.

This could be remedied if they allowed us to turn 2FA off... even for a timed off, say an hour. Just to allow us to do workarounds for situations they didn’t foresee in their great wisdom.

This should not affect “security” if I can prove it is ME with all of my devices and location services and security questions...

it would just allow us to be more functional.

It is especially disingenuous because there is no CLEAR warning WHEN TURNING 2FA ON, that it can never be reversed!!!! I never saw an email (in fact, I am going to do a deep search for that pink unicorn). We are busy with our daily lives and constantly bombarded with notifications, updates, etc... and usually, at a very importune moment (or so it seems!)

This information should have been baked into the process of turning 2FA on!!!! NOT IN AN EMAIL AFTER THE FACT.

That is what makes it especially maddening. And inconsiderate, to put it nicely.

The problem for me that I have four people in my family who all use the same Apple ID. When we need to change something or do anything that requires us to use the two-factor code it's sent to my wife's phone. If she doesn't happen to be in the room, or is at work, etc. then we're basically locked out, which is beyond annoying. Forcing us into using something we don't want it downright Orwellian. We should be able to use what level of security makes sense for us individually. But the real question, why should we have to explain ourselves at all.

Every time I try to give the code to my other device it is interrupted over and over again and personally i'd rather have my account hacked then it be impossible to turn off ; also the Two-factor verification was turned on with out my permission and now because of that i'll Never be able to sign in.

So for the love of God get rid of the Two-factor verification or just ADD AN OFF BUTTON.

sylviefromsaint-lambert wrote:

GB,

I just updated to Mojave on this MacBook Pro and was prompted to turn on 2 factor verification. It did not say I could never turn it off. Now I can't. that is Orwellian.

My wife and I share the same appleid and travel. She just has her iPad with her and does not use a SIM card. No way to communicate....... Nice job!!!

And if I'm not home and she's at the library with this Macbook? Sorry, this was easily foreseeable.....

Why are you addressing me as though I have some control over what it is and how it works. I'm a user just like you. I'm just giving you the facts. And she can generate a verification code on her iPad - the iPad doesn't need a SIM card to get a Wifi connection.

GB

It really isn't accomodating as it means always having the phone or trusted device to hand. I don't want to be tethered to sitting with two devices at all times.

You can have multiple trusted devices and trusted numbers as well. However, 2FA doesn't require two devices. If the device you're working on is the trusted device, the code will appear on that. The "two" is for two factors, one is your password, the other is the code.

Do you use a VPN or proxy server? That will be a factor if you do.

On the older Apple TV... it will not natively understand a 2FA code. You need what is known as a decorated password.

See >>> https://support.apple.com/en-ca/HT204915