How to turn off two factor authentication?

This is a point I raised earlier in this thread,

surely the fact that the code is available on the possibly stolen device defeats 2FA security.

I have been caused so many problems since this was turned on I now only use the over £3000. Of new devices when absolutely necessary. This was not what Apple is about.

I accept Apples attempt at security but it needs fixing so it works flawlessly across device and preferably without internet access.

I know we are all now using constant connection devices and of course this comes with its own risks, But surely there are better ways without sending codes over any form of wireless system.

When I first posted here I never expected to see the types of responses I have seen, ranging from helpful to insulting but all have a part to play.

I have noticed that 2FA has improved slightly over the past few months for me at least but still unstable and hardly reliable.

Someone here mentioned about not being forced to use 2FA and I would agree however the setup process misleads you into turning it on and no reminder to turn it off if unhappy with its performance. I believe that like myself most of the complaints are in regards to the underhanded way 2FA was implemented.

Further to this point many many people and organisations are not using 2FA so why are the rest of us unable to disable it.

It should be if it’s truly about Apple security a universal system as what’s the point of half closing the door.

I strongly believe that the way forward is in NFC technology or similar so no over air input is required ensuring greater protection from outside hackers. There is no security that is completely safe as has been proved time and time again with some of the worlds most secure organisations being hacked and held to ransom. I view of this any security measures are always welcomed providing that they work and unfortunately the Apple 2FA in its current form is less than great for many users.

I usually find that the people I speak to in regards this are new users and have no issues as it’s been there from the start of their experience, however many of the more seasoned users find it intrusive at best.

The-wolf wrote:

This is a point I raised earlier in this thread,

surely the fact that the code is available on the possibly stolen device defeats 2FA security.

The code is only available if the stolen device is unlocked. If you have a passcode on the device, the code is not available.

I usually find that the people I speak to in regards this are new users and have no issues as it’s been there from the start of their experience, however many of the more seasoned users find it intrusive at best.

Speaking as someone who has spent a lot of time in these forums and 20 years in the cell phone industry, I'd say the opposite is true. Newer users make the mistake of thinking that 2FA protects their device. They don't understand how to manage trusted devices. They have only one trusted device. They think if their devices gets stolen, the security is compromised. Most experienced users have little problem. I'm not sure how something one interacts with a couple of times a month is "intrusive".

And technically speaking, companies don’t set security requirements with individual user’s wishes or preferences in mind. They set them based on aggregate users, which in Apple’s case is hundreds of millions of users world wide. And as anyone who spends any time here knows, many are very lax with their online login ID’s security.

I am sure Apple, like any company offering online services, is not terribly concerned with those who take personal security seriously and actively take steps to secure their information and accounts. But from a company perspective, Apple will be concerned about those who don’t, and will alter their account security policies to safeguard themselves from those who do not take their login ID security seriously.

Apparently that has led them to decide that passwords alone, and the antiquated and insecure security question system is inadequate for AppleID’s and all the new services they offer which use an AppleID (like Apple Pay, the Apple Card, iCloud Keychain, etc), and a two factor login system is the current best alternative to secure users accounts. Which is entirely within their rights to do so.

I've seen much presented justifying the 2FA, but little acknowledging the problems. If the problems aren't addressed, the system only works for some.

For example, I logged into my Apple account to make a change via my computer. The authentication code was sent as designed ... to my new iPad ... which happened to be in another location. Yea, that works!

Also a problem for me. My computer is always asking for it again sometimes after only an hour or two even after clicking remember device. This reason alone makes me want to never use an Apple computer.

AlbertGray wrote:

Also a problem for me. My computer is always asking for it again sometimes after only an hour or two even after clicking remember device. This reason alone makes me want to never use an Apple computer.

Using a VPN? Proxy Server?

I can't believe there is no forwarning that once two factor authentication is set you cannot remove it.

I lost my iphone and cannot reset the password, no option to email a link just a never ending code sent to my phone, which is lost. way to go Apple

In response to LACAllen

It may well be true in reference to back doors in iOS, however it’s a well know fact that iPhones get hacked

2FA protects your Apple account and not the device anyway. It’s a very dangerous road to take over IOS is not hackable. As it implies total security which is not possible on any platform.

I do agree IOS is very secure but it’s not impregnable.

I was tricked into turning in 2FA during the new device setup procedure, so I do sympathise with others who experienced this awful misleading setup process. Also an Apple device without an Apple account is an overpriced door stop.

2FA is required for many things on Apple so it’s not really an option.

So the term forced to use really does apply.

2FA is a great idea and adds security without a doubt however it needs to be far less unreliable and intrusive.

furthermore ANY data sent over air is insecure by its very nature.

I personally feel that if Apple fix the problems 2FA will improve security until then it’s just not useable on a daily basis.

Many other systems like android, google and Microsoft all use 2FA and I use them all and without any complaints as they work smoothly and don’t require constant bombardment of get code.

Why can’t Apple who consider themselves at the top of the chain and cutting edge technology get it to work?

2FA is required for many things on Apple so it’s not really an option.

So the term forced to use really does apply

Actually it is an option. It only applies if you want to use those specific features. I do not use them because I choose not to. And I do not have 2FA enabled because I checked into it before enabling it. I do get popup nags which I ignore. So, if you enable a feature without researching the consequences first, that would be your decision.

The-wolf wrote:

Many other systems like android, google and Microsoft all use 2FA and I use them all and without any complaints as they work smoothly and don’t require constant bombardment of get code.

Complaints that Google's systems is less secure because it uses SMS:

https://support.google.com/googlenest/thread/9754343?hl=en

Inability to disable the feature:

https://support.google.com/accounts/thread/15957185?hl=en

Possible security issue with Google:

https://www.zdnet.com/article/google-could-have-fixed-2fa-code-stealing-flaw-in-authenticator-app-years-ago/

Yeah, not complaints, no issues. I'm sure that more than 5 minutes of searching would turn up more.

This is the stupidest thing I've ever heard of! I lost my phone, and was trying to ping it from icloud.com - but I couldn't log into icloud without authenticating with the 6-digit number - which of course is sent to my lost phone! WTH. Apple usually thinks this stuff through - this is a total fail.

I guess I will try the support number.

This Two Factor is a real problem. There is a bug that even after re-installing, I cannot get my Windows 10 computer to quit prompting me every few minutes to put my credentials back in for iCloud. I had to start ignoring it. Even if I went to the trouble, it is really annoying to my significant other that it also sends the code to her phone. So it is a huge constant interruption to two people. Now, why trying to trouble-shoot why my Outlook will no longer open my Contacts/address book, every one of your screens I go to and every option I try is a pain to both of us constantly getting these codes. Please give us users a way to opt out of this option.

Sadly two factor authentication is foistered upon us and it can't turned off or removed.

You need to have two devices every time you do something relating to your account, the device you are changing and an authentication device. So if you are travelling, don't forget to take both devices with you.

The best solution is to buy a Windows pc or an Android.

Unfortunately is just purchased a new ipad, but on the plus side i did not purchase a new macbook - which i will not be purchasing now.

"Before you start making more misstatements, you should take the trouble to learn more about how it works."

Once again, a clear example of the arrogant, haughty, responses from this group.

Maybe, before making any more demeaning remarks to users, YOU should take the time to understand the problem and/or provide help, rather than deceitful, shallow remarks denigrating users suffering with this ill-conceivable, poorly implemented, system of 2FA.

Based upon the shear volume of negative feedback, you'd think maybe the light would go on, but apparently the magnitude of your pomposity overwhelms any light that might shine.