For the vast majority of people this has been a seamless migration as intended, but there are definitely folks that are hitting roadblocks and we apologize for that. > there should really have been an email specifically on this quite important change That said, any plans to implement passkeys? Complexity rules simply force people to use pattern based passwords which make it easier for them to be discovered by bots.ģ random words (not what3words) are far more effective. Complexity rules do not improve security and if using MFA have even less impact.
"robot banana gunmetal" is a lot more secure than "Pa$$w0rd1" which meets your complexity rules - Įcho everything says here. Use a minimum password length of at least 12 and maximum at least 64Ĭheck passwords against a compromised password list (e.g. Please, please, please, follow best practices: Why on earth are you implementing archaic complexity requirements? Do you not follow the best practices for Identity - password complexity DOES NOT improve security, in fact there is strong evidence to prove it weakens security. Is it possible that there's some call to another site that is being blocked by pi-hole or some browser privacy setting? Gettiing a bit annoyed by this. (Using Vivaldi on Win 10, if that's relevant). I scan the QR, enter the code numbers, click Verify (or whatever the button label is) and nothing happens. My previous password didn't meet the requirements, so maybe the password complexity checking was preventing me from logging in?Īnyway, now that I'm in (obviously) I can't get MFA set up using Google Authenticator. So I had to do a password reset and entered a complexity-compliant password. OK, so I tried to login - yes, using my email address - but no joy with the password which I was quite sure was correct.
So while trying to solve a problem on the forums I suddenly found myself logged out and then saw the MFA message. As another poster said, there should really have been an email specifically on this quite important change - surely more significant that another podcast or whatever. And while I see now that it was in a newsletter, it was quite far down. Maybe I missed something obvious, but honestly I didn't see anything highlighting this change until this morning (my time).
0 kommentar(er)
