maltfield
commented
2 years ago Besides my experiences, the proof is in the screenshot of the original issue
The user can literally just click either "Security Key" or "Google Prompt" and they won't have to provide a phone number to Google to setup 2FA.
- Security Key is a hardware security key
- afaik Google Prompt requires the user to have installed Google on an Android device. 2FA here is them clicking "I approve" or something in some popup in the app.
There may be other options as well under Show more options that I'm not aware of
Carlgo11
ghost
Site name
Google (appear in multiple instances: Google Drive, Google Cloud Platform, Hangouts, Google Domains, Gmail, Google Play, Google Fit, Google Pay, Google Fi, Google Fiber)
Site URL
https://drive.google.com/, https://cloud.google.com/, https://hangouts.google.com/, https://domains.google.com/, https://mail.google.com/, https://play.google.com/, https://fit.google.com/, https://pay.google.com/, https://fi.google.com/, https://fiber.google.com/
Update reason
Other (please describe below).
Additional information
Preamble
First, I'm being forced to create a new ticket rather than just update an existing ticket because the existing ticket is locked.
Mods, please don't lock tickets. It just makes collaboration more difficult, scatters our work across multiple new tickets, and makes it harder for folks to find information about a given issue.
The Issue
While I appreciate the additional information added by the note in this PR, it's just incorrect.
You do not need to enter a mobile phone number. But you do need to add a backup 2FA method. Instead of adding a phone number, you can add a hardware security key.
I recently worked for an organization that switched to Google Workspace. We bought everyone in the company hardware security keys specifically to prevent us from having link our user's phone numbers into their Google Accounts (and risk Google using it as an insecure fallback).
The solution
Please change this
to this
Issue Eligibility