AppStore Connect two factor auth with trusted phone number is not possible

[evorotnikov]

As part of distribution of iOs build there is a possibility to deploy it directly to AppStore/TestFlight vis store connection.

Currently while creating new connection for AppStore Connect i can't use trusted phone number and i don't have ios device with linked Apple Id, so there are no way to create a store connection.

It will be great to be able use trusted phone number and got two factor auth via sms or phone call.

[blparr]

Hi @evorotnikov - thanks for your feedback! We'll take that into consideration for future prioritization.

[Oddj0b]

@evorotnikov Are you talking about support for 2-step verification instead of 2-factor authentication?

[evorotnikov]

@Oddj0b not really in my understanding, it's still 2-factor, but apple originally provide several options how to get a second factor:

• Default is via Apple codes (okta like) when you have a trusted device
• Alternative is by sending sms or calling trusted phone number (in case you don't have trusted ios device)

So second case is not covered in appcenter in my opinion.

Attaching what i see while logging in into developer.apple.com:

[Oddj0b]

@evorotnikov thanks for clarifying, I wasn't aware that Apple offered a service like this. I'll talk with our engineers to understand how hard it would be to implement. We normally prioritize Github tickets by reaction and if this receives enough 👍 there's a bigger chance it will be implemented.

[evorotnikov]

@Oddj0b sure, thanks for replying to this one. I hope it will eventually be in.

[ajaykn]

@evorotnikov Apple by default sends 2FA codes to your trusted phone number if you have no devices linked. Please check once https://appleid.apple.com/account/manage

And you should be able to create a store connection in AppCenter with the codes you receive to your phone number as you mentioned that your account has no devices linked. We hope you are not blocked currently.

But yeah option where we explicitly wants to receive the code to the phone instead of devices is not available in AppCenter.

[bramski]

I can't use my SMS code to connect the apple account. This is very frustrating as my iPhone died. The code won't go to my macbook and I'm stuck unable to upload our production build.

[ajaykn]

Hi @bramski If I understand correctly, you are not receiving codes to your MacBook. Can you check if your MacBook is listed under trusted devices here

[bramski]

It's tied to a dead iphone and since that's unavailable i'm getting them by SMS. My Macbook is a trusted device.

[bramski]

I searched through why my macbook isn't receiving them; apple prefers to send to your mobile device and if that's unavailable it will send to your SMS. So I'm stuck unable to upload my builds until I can revive the iPhone.

[ajaykn]

Oh thats strange why your MacBook is not receiving the 2fa codes. Notifications are hidden, if you have DnD mode ON, if so please turn it off and give a try.

[rzane]

This is also happening to me.

• My MacBook is listed under "Devices" for my Apple ID.
• I'm receiving a text message, but if I enter the code, I get an error saying "Two-Factor Authentication via SMS is currently not supported".

Turns out that I was signed into a different Apple ID on my MacBook. Once I switched accounts, I got the message.

[Oddj0b]

It sounds like you have a trusted phone number and not a trusted device: https://support.apple.com/en-us/HT204915

[ptrkstr]

Is there any movement on this? Noticed the error message states that I can't use text messages.

[maciejtrybilo]

I'm in a bit of a bind with this one. We use managed Apple IDs in the company and Apple has disabled the "trusted devices" 2FA for managed Apple IDs and I can only receive the code via SMS. But, as the screenshot above shows, App Center doesn't support 2FA via SMS codes.

I would be very grateful if you could add support for SMS codes as I'm unable to set up TestFlight distribution in App Center at all at the moment.

[astk]

I'm also stuck at this stage. Right now can't connect App Store because I don't have trusted device and there's no option to request to use trusted phone number added.

[tiagopiresxpand]

I'm in a bit of a bind with this one. We use managed Apple IDs in the company and Apple has disabled the "trusted devices" 2FA for managed Apple IDs and I can only receive the code via SMS. But, as the screenshot above shows, App Center doesn't support 2FA via SMS codes.

I would be very grateful if you could add support for SMS codes as I'm unable to set up TestFlight distribution in App Center at all at the moment.

@maciejtrybilo Do you have managed Apple IDs with federation enabled?

[lourencogui]

I'm facing the same issue

[KAnderson]

I have the same issue, it was working and I am unable to reconnect. I have multiple macbook pro's listed as devices but neither receive the code, it only comes via SMS

[dimayurkovski]

Same issue. SMS code come to phone but error message is "The verification code entered is invalid. Make sure your trusted device is logged to iCloud. Two-Factor Authentication via SMS is currently not supported. Enter the valid pop-up two-factor code from your trusted device."

[erdenemunkh]

Same issue. I am received SMS code. But verification failed. Stil error message.

[amie-wilt]

Same issue.

I'm using a separate Apple ID for development purposes (dev@...) instead of my personal Apple ID. From what I gather, I'd need to sign out of my iPhone with my personal Apple ID and sign in with the developer Apple ID so that my device could be recognized. However, that's a little cumbersome to have to do. Seems like the SMS code should suffice.

[amie-wilt]

I found a workaround (for my use case ☝️) for this in case anyone is still stuck.

Under "Add a device to the list" on this support page (https://support.apple.com/en-us/HT205064), there's a list of places you can sign into for your device to be recognized. One of those places is Game Center. I don't really know what that is but I don't use it so I figured I'd see if I could sign into it. I took the following steps on my iPhone, although I'm sure the same/similar goes for iPad, Mac:

1. Go to Game Center (I just searched it).
2. Sign out if you're already signed in.
3. Toggle Game Center back on, and sign in with the Apple ID you're trying to get passcodes for.
4. At this point you should see your device listed as a trusted device.
5. Then go to Settings and click on your name to view your Apple ID info (which won't be the same as the one you just used in Game Center), then Password & Security, then "Get Verification Code".
6. I used this verification code for AppCenter and it worked. ¯_(ツ)_/¯

Hope that helps.

[tiagopiresxpand]

I'm in a bit of a bind with this one. We use managed Apple IDs in the company and Apple has disabled the "trusted devices" 2FA for managed Apple IDs and I can only receive the code via SMS. But, as the screenshot above shows, App Center doesn't support 2FA via SMS codes. I would be very grateful if you could add support for SMS codes as I'm unable to set up TestFlight distribution in App Center at all at the moment.

@maciejtrybilo Do you have managed Apple IDs with federation enabled?

@maciejtrybilo yes i do.

[maciejtrybilo]

@amie-wilt Thank you for that, but when I go to the Game Center I get a message: "This Apple ID cannot be used with Game Center. Your Managed Apple ID is not eligible to use Game Center."

[amie-wilt]

@maciejtrybilo I did a quick search and maybe it's because your Game Center is toggled on for iCloud? I checked mine and it is not. I'd say trying turning it off if it is in fact turned on (Settings > Apple ID > iCloud) and then try those steps ☝️ again.

[ianthetechie]

Does anyone at Microsoft actually maintain this product anymore? This is completely absurd. Fix your junk.

Edit because I probably need to explain myself. The demand for a trusted device (when Apple clearly does SMS auth and sends me the code that App Center rejects) is completely unreasonable. The "trusted device" must be signed in with the Apple ID in question. Your device can be signed in to only a single Apple ID at a time for a variety of reasons. A very large number of professional Apple developers (anyone at an agency / freelancer / etc.) may be acting agents for a dozen or more Apple developer accounts, which may never be associated with any of your devices in this way. The App Center failure to support this use case is baffling for a CI service.

[tkharuk]

Two-Factor Authentication via SMS is currently not supported.

When the "currently" is going to happen? :) Are there any plans for this to be supported?

[j-bbr]

I want to give this another bump. Signing out and into developer accounts every 30 days is very annoying!

[ianthetechie]

Bump. This as BROKEN. We cannot use App Center without this. Your integration is broken. Full stop. Additionally, generating app-specific passwords seems to no longer work?

[vietstone-ng]

No one care :v

[tkharuk]

@j-bbr it is not only annoying. But since I don't use my PERSONAL Apple account for development, but rather a CORPORATE issued account. I'm simply unable to log in at all!

[AntAttakk]

Please fix this! I only have one device signed into my job Apple account. It works fine everywhere else using authentication via SMS to my personal phone, but not on AppCenter. This means we can no longer use the integration with AppStore at all.

[khalilyamoun]

No one cares :( leaving AppCenter soon.

[michael-knee]

I've hit the same issue with both trusted phone SMS codes and trusted device codes.

The screenshot above is for my work developer account, which I added as a secondary iCloud account on my laptop. The same approach works for my personal developer account (on the same laptop). I'm not sure what the difference is that prevents the work account from connecting.

Update My workaround is to:

• Continue using the App Center build (for now).
• Download the building artefact (ipa file).
• Upload the ipa file using Apple's Transporter app (https://apps.apple.com/us/app/transporter/id1450874784?mt=12)

[nkovacic]

No one cares :( leaving AppCenter soon.

Are there any alternatives?

[ptrkstr]

No one cares :( leaving AppCenter soon.

Are there any alternatives?

Bitrise with fastlane, until Xcode cloud comes out of beta

[FranFara]

Hello everyone, I have the same problem here. Are there any reports of any progress on this issue?

[JohnFlyIII]

Same issue. Please address. Please accept the SMS codes

[phonglee]

Here my fixed:

• Sign in with the apple account into the phone that registered the phone number in the apple account. Check from apple account to make sure that your phone is allowed)
• In AppCenter, reconnect to the AppStore
• In phone, a message will be displayed to allow/not allow another device login -> Yes -> 6 digit code will be displayed

• Enter 6 digit code for AppCenter Noted: Use 6 digits from Verification Code Dialog, not from your Messages App

[JohnFlyIII]

Here my fixed:

* Sign in with the apple account into the phone that registered phone number in the apple account

* In AppCenter, reconnect to the AppStore

* In phone, a message will be displayed to allow/not allow another device login -> Yes -> 6 digit code will be displayed

* Enter 6 digit code for AppCenter

The verification code entered is invalid. Make sure your trusted device is logged to iCloud. Two-Factor Authentication via SMS is currently not supported. Enter the valid pop-up two-factor code from your trusted device.

[phonglee]

Here my fixed:

* Sign in with the apple account into the phone that registered phone number in the apple account

* In AppCenter, reconnect to the AppStore

* In phone, a message will be displayed to allow/not allow another device login -> Yes -> 6 digit code will be displayed

* Enter 6 digit code for AppCenter

The verification code entered is invalid. Make sure your trusted device is logged to iCloud. Two-Factor Authentication via SMS is currently not supported. Enter the valid pop-up two-factor code from your trusted device.

You must use 6 digit code from the Verification Code dialog not the code from Messenger App otherwise you will get above error

[JohnFlyIII]

Here my fixed:

* Sign in with the apple account into the phone that registered phone number in the apple account

* In AppCenter, reconnect to the AppStore

* In phone, a message will be displayed to allow/not allow another device login -> Yes -> 6 digit code will be displayed

* Enter 6 digit code for AppCenter

The verification code entered is invalid. Make sure your trusted device is logged to iCloud. Two-Factor Authentication via SMS is currently not supported. Enter the valid pop-up two-factor code from your trusted device.

You must use 6 digit code from the Verification Code dialog not the code from Messenger App otherwise you will get above error

That's what the issue is. <----- see the original suggestion of "It will be great to be able use trusted phone number and got two factor auth via sms or phone call."

Some people do not have, or have access to a device that shows the dialog.

[ghost]

This issue has been automatically marked as stale because it has not had any activity for 60 days. It will be closed if no further activity occurs within 15 days of this comment.

[ptrkstr]

Bump

[SarlaccNix]

This is stupid. I had my connection up and running, I must upload a new version on my AppStore today and I need to waste my time now on this. Gosh, AppCenter is annoying.

[syntax-e]

Hi, In my org there are a few engineers who have their phone numbers registered with our single Apple ID's 2FA. There is only one Apple device that is signed in with that Apple ID and not everyone has physical access to that device to receive the 2FA dialog. Those engineers are unable to reestablish AppCenter connections to the Apple App Store when "Your Apple App Store Credentials are no longer valid. Please re-authenticate." occurs. It would be ideal if App Center supported an option allow the 2FA code to still be sent via SMS even if there is an Apple device logged in with that Apple ID somewhere.

tl;dr: This 2FA setup is quite challenging to manage in a group environment.

[ghost]

This issue has been automatically marked as stale because it has not had any activity for 60 days. It will be closed if no further activity occurs within 15 days of this comment.

[ptrkstr]

Bumping. Developers need this.

[gcaven-nbx]

This is a show-stopping problem for anybody who deals with multiple Apple IDs for work, how has this been allowed for fester for so long? Has anybody from Microsoft even acknowledged this issue?