<?xml version="1.0" encoding="UTF-8"?>
<rss xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:taxo="http://purl.org/rss/1.0/modules/taxonomy/" version="2.0">
  <channel>
    <title>topic Six-digit security code involved in account login, although in settings the 2FA option is disabled in Security and Permissions</title>
    <link>https://www.dropboxforum.com/t5/Security-and-Permissions/Six-digit-security-code-involved-in-account-login-although-in/m-p/774831#M15504</link>
    <description>&lt;P&gt;Good morning. By default, for the operation of connecting to a Dropbox account with a Dropbox Basic subcription, not only a &lt;STRONG&gt;password&lt;/STRONG&gt; as a first authentication factor is required, but also an additional authentication, therefore a second, operating by sending a &lt;STRONG&gt;six-digit security code&lt;/STRONG&gt; to the e-mail address attached to the account and the devices linked to it. I observe that there is an option to define as trusted the computer on which this connection operation takes place, in order to avoid receiving such a code.&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;P&gt;Today, it's with great delay that I decide to investigate the underlying cause of this second factor of authentication being enabled, which brings me to the account settings. We see that the &lt;EM&gt;Two-step verification&lt;/EM&gt;* option is disabled by default. As you may have already guessed, this leads me to wonder how a second authentication factor can then be involved in the login operation. I would appreciate an official justification for this practice. Greetings.&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;P&gt;* Also known as &lt;EM&gt;two-factor authentication&lt;/EM&gt;, &lt;EM&gt;2FA&lt;/EM&gt;.&lt;/P&gt;</description>
    <pubDate>Mon, 03 Jun 2024 09:40:29 GMT</pubDate>
    <dc:creator>Ricky Tigg</dc:creator>
    <dc:date>2024-06-03T09:40:29Z</dc:date>
    <item>
      <title>Six-digit security code involved in account login, although in settings the 2FA option is disabled</title>
      <link>https://www.dropboxforum.com/t5/Security-and-Permissions/Six-digit-security-code-involved-in-account-login-although-in/m-p/774831#M15504</link>
      <description>&lt;P&gt;Good morning. By default, for the operation of connecting to a Dropbox account with a Dropbox Basic subcription, not only a &lt;STRONG&gt;password&lt;/STRONG&gt; as a first authentication factor is required, but also an additional authentication, therefore a second, operating by sending a &lt;STRONG&gt;six-digit security code&lt;/STRONG&gt; to the e-mail address attached to the account and the devices linked to it. I observe that there is an option to define as trusted the computer on which this connection operation takes place, in order to avoid receiving such a code.&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;P&gt;Today, it's with great delay that I decide to investigate the underlying cause of this second factor of authentication being enabled, which brings me to the account settings. We see that the &lt;EM&gt;Two-step verification&lt;/EM&gt;* option is disabled by default. As you may have already guessed, this leads me to wonder how a second authentication factor can then be involved in the login operation. I would appreciate an official justification for this practice. Greetings.&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;P&gt;* Also known as &lt;EM&gt;two-factor authentication&lt;/EM&gt;, &lt;EM&gt;2FA&lt;/EM&gt;.&lt;/P&gt;</description>
      <pubDate>Mon, 03 Jun 2024 09:40:29 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Security-and-Permissions/Six-digit-security-code-involved-in-account-login-although-in/m-p/774831#M15504</guid>
      <dc:creator>Ricky Tigg</dc:creator>
      <dc:date>2024-06-03T09:40:29Z</dc:date>
    </item>
    <item>
      <title>Re: Six-digit security code involved in account login although in settings the 2FA option is disable</title>
      <link>https://www.dropboxforum.com/t5/Security-and-Permissions/Six-digit-security-code-involved-in-account-login-although-in/m-p/774833#M15505</link>
      <description>&lt;BLOCKQUOTE&gt;&lt;HR /&gt;&lt;a href="https://www.dropboxforum.com/t5/user/viewprofilepage/user-id/1517280"&gt;@Ricky Tigg&lt;/a&gt;&amp;nbsp;wrote:&lt;BR /&gt;
&lt;P&gt;We see that the &lt;EM&gt;Two-step verification&lt;/EM&gt;* option is disabled by default.&lt;/P&gt;
&lt;HR /&gt;&lt;/BLOCKQUOTE&gt;
&lt;P&gt;What you're seeing isn't the usual two-step verification feature, which would use an authentication device such as a mobile phone. It's a one-time security code and Dropbox will request these anytime it doesn't recognize a device or feels the sign-in attempt may be suspicious.&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;UL&gt;
&lt;LI&gt;&lt;A href="https://help.dropbox.com/account-access/one-time-code" target="_blank"&gt;https://help.dropbox.com/account-access/one-time-code&lt;/A&gt;&lt;/LI&gt;
&lt;/UL&gt;</description>
      <pubDate>Sun, 02 Jun 2024 14:58:50 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Security-and-Permissions/Six-digit-security-code-involved-in-account-login-although-in/m-p/774833#M15505</guid>
      <dc:creator>Rich</dc:creator>
      <dc:date>2024-06-02T14:58:50Z</dc:date>
    </item>
    <item>
      <title>Re: Six-digit security code involved in account login although in settings the 2FA option is disable</title>
      <link>https://www.dropboxforum.com/t5/Security-and-Permissions/Six-digit-security-code-involved-in-account-login-although-in/m-p/774896#M15506</link>
      <description>&lt;P&gt;So something unknown remains as to the usage protocol when the &lt;EM&gt;Two-step verification&lt;/EM&gt; option is active, because none of the pages relating to the connection - &lt;A href="https://help.dropbox.com/account-access/enable-two-step-verification" target="_blank"&gt;https://help.dropbox.com/account-access/enable-two-step-verification&lt;/A&gt; and &lt;A href="https://help.dropbox.com/account-access/one-time-code" target="_blank"&gt;https://help.dropbox.com/account-access/one-time-code&lt;/A&gt; - mention it. Which unknown places the service user in the uncomfortable position of not knowing what to expect when connecting. I dare to speculate that the &lt;STRONG&gt;one-time security code&lt;/STRONG&gt; would not be applied because it would then involve three authentication factors, which could be considered disproportionate.&lt;/P&gt;</description>
      <pubDate>Mon, 03 Jun 2024 06:31:15 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Security-and-Permissions/Six-digit-security-code-involved-in-account-login-although-in/m-p/774896#M15506</guid>
      <dc:creator>Ricky Tigg</dc:creator>
      <dc:date>2024-06-03T06:31:15Z</dc:date>
    </item>
  </channel>
</rss>

