14 votes

What TOTP authenticator app do you recommend?

I've used the LastPass authenticator for a while (since I also used the LastPass password manager and it integrated nicely) but I recently switched to Bitwarden as I'm looking to get away from LastPass. I've been putting off moving to a different authenticator for a while and now that I'm wanting to switch I'm not really sure to which one.

My only requirement is that it needs to be available on iOS. So what do you recommend?

28 comments

  1. [2]
    pew Link
    Bitwarden also supports TOTP. I'm using Authy and I've been pretty happy with it so far. It also does (apparently encrypted and secure) backups of your keys. I like that feature since you don't...

    Bitwarden also supports TOTP. I'm using Authy and I've been pretty happy with it so far. It also does (apparently encrypted and secure) backups of your keys. I like that feature since you don't have to worry when you upgrade your phone or lose it. Just remember the backup password.

    8 votes
    1. Bauke Link Parent
      Thanks, I'll check out Authy. I've been adding the secrets to my Bitwarden logins when making new accounts (while also adding it to my current authenticator), however I don't want to rely on...

      Thanks, I'll check out Authy.

      I've been adding the secrets to my Bitwarden logins when making new accounts (while also adding it to my current authenticator), however I don't want to rely on Bitwarden for 2FA because if I get logged out everywhere from Bitwarden (phone, browser, ...) then I won't have access to anything. And that's not good. :P

      3 votes
  2. [8]
    cadadr Link
    I use the Android version of FreeOTP, which is FOSS and has an iOS version too. I keep my passwords safe with Password Store, it is a CLI program in essence but there are many GUI frontends. I use...

    I use the Android version of FreeOTP, which is FOSS and has an iOS version too. I keep my passwords safe with Password Store, it is a CLI program in essence but there are many GUI frontends. I use this one on Android, on desktop I have a little front-end I wrote in Emacs that I use, and a little script that uses dmenu. But actual desktop apps are available, here is a list of GUI clients for desktop and mobile, including iOS. Password store uses git and GnuPG behind the curtains (tho the curtains are easy to bypass if there is a need). I used to sync with Syncthing, but I don't trust it with data that is not ephemeral anymore.

    All of the above is completely FOSS software, MPL, GPL or Apache-licensed.

    7 votes
    1. [7]
      Bauke Link Parent
      Thanks for the thorough answer, I'll check FreeOTP out! I've settled on my password manager for now. :P

      Thanks for the thorough answer, I'll check FreeOTP out! I've settled on my password manager for now. :P

      5 votes
      1. [2]
        cadadr Link Parent
        You're welcome! IDK why I thought you were also asking for a password manager, guess I rushed reading your post, sorry :)

        You're welcome! IDK why I thought you were also asking for a password manager, guess I rushed reading your post, sorry :)

        4 votes
        1. Bauke Link Parent
          No problem, maybe it'll be useful for someone else. :D

          No problem, maybe it'll be useful for someone else. :D

          3 votes
      2. [4]
        Grand0rbiter Link Parent
        Check out AndOTP. It's a more secure and maintained fork of freeotp.

        Check out AndOTP. It's a more secure and maintained fork of freeotp.

        2 votes
        1. [3]
          cfabbro Link Parent
          Isn't AndOTP Android only?

          My only requirement is that it needs to be available on iOS.

          Isn't AndOTP Android only?

          3 votes
          1. 9000 Link Parent
            It is. I use and enjoy andOTP as well, but sadly it's not available in this case.

            It is. I use and enjoy andOTP as well, but sadly it's not available in this case.

            4 votes
          2. Grand0rbiter Link Parent
            Oh, sorry. Didn't see the iOS part.

            Oh, sorry. Didn't see the iOS part.

            2 votes
  3. SpaceAttorney Link
    This is my favourite one: OTP Auth by Roland Moers Works great if you have a Mac too, syncs over iCloud in a secure manner. The developer seems great too.

    This is my favourite one:
    OTP Auth by Roland Moers

    Works great if you have a Mac too, syncs over iCloud in a secure manner. The developer seems great too.

    3 votes
  4. [5]
    moriarty Link
    Just out of curiosity - why are people switching away from LastPass? Are there any security issues with it?

    Just out of curiosity - why are people switching away from LastPass? Are there any security issues with it?

    4 votes
    1. [2]
      Bauke Link Parent
      I moved away from using LastPass as my password manager for a few reasons. The biggest ones being required to install a binary to get password copying to work and just not being comfortable with...

      I moved away from using LastPass as my password manager for a few reasons. The biggest ones being required to install a binary to get password copying to work and just not being comfortable with using it anymore since there's better alternatives out there now. I've had trouble sometimes with logging in while using a VPN. They require you to enable a country to login from via email and that also became a hassle, while I do like that feature it's a pain sometimes.

      As for LastPass Authenticator, no particular reason. I guess because they're from the same company the doubts I'm having from the password manager carry over, so I'd like to see what the alternatives are and decide then.

      5 votes
      1. moriarty Link Parent
        That makes sense. Thanks for the details. Maybe I'll give Bitwarden a try

        That makes sense. Thanks for the details. Maybe I'll give Bitwarden a try

        3 votes
    2. mari (edited ) Link Parent
      I've switched away because it didn't integrate nicely with me. The Linux app wasn't very nice to use and the browser addon kept on bugging me whenever I signed into something if I wanted to add it...

      I've switched away because it didn't integrate nicely with me. The Linux app wasn't very nice to use and the browser addon kept on bugging me whenever I signed into something if I wanted to add it to LastPass. I also kinda started to distrust it when I was consistently able to access the password for some sites without my Yubikey using the browser addon. Don't know if that is by design or not.

      3 votes
    3. pew (edited ) Link Parent
      They have a bad history for a password manager imho

      They have a bad history for a password manager imho

      2 votes
  5. [10]
    cfabbro Link
    Off-topic but how are you liking Bitwarden? My Lastpass subscription is expiring in 3 months so I am actively looking for alternatives. I have been tinkering with KeePass, but I just don't know if...

    Off-topic but how are you liking Bitwarden? My Lastpass subscription is expiring in 3 months so I am actively looking for alternatives. I have been tinkering with KeePass, but I just don't know if I trust myself enough to use it... and Bitwarden seems like a nice middle ground between the two.

    2 votes
    1. [9]
      Bauke Link Parent
      It's great and cheap! It was super easy when I switched over, just export LastPass as CSV and import in Bitwarden. The integrated tools to check for various things are also really nice. I've had...

      It's great and cheap! It was super easy when I switched over, just export LastPass as CSV and import in Bitwarden. The integrated tools to check for various things are also really nice. I've had no problems so far, definitely recommend it.

      4 votes
      1. cfabbro (edited ) Link Parent
        LOL, yeah, I have to admit the price is definitely appealing. I don't mind paying a few bucks a month for a good password manager, but getting 5 accounts for $1/mo is really tempting. I have been...

        LOL, yeah, I have to admit the price is definitely appealing. I don't mind paying a few bucks a month for a good password manager, but getting 5 accounts for $1/mo is really tempting.

        I have been trying to convince a few other family members to start using password managers as well (esp my sister who had a bunch of accounts compromised recently due to reused password). So being able to offer them all "free" access under my account would certainly make it easier to get them to finally take the plunge... especially since I already do that with a few other things too (e.g. Office 365, Netflix, Amazon Prime, etc.).

        2 votes
      2. [7]
        Adys Link Parent
        You both should give 1Password a try. I was an avid KeepassXC user and still recommend it to people who know what they're doing, but 1Password is fantastic and much easier to adopt. It's also easy...

        You both should give 1Password a try. I was an avid KeepassXC user and still recommend it to people who know what they're doing, but 1Password is fantastic and much easier to adopt. It's also easy to sell to companies which then get all their staff a bunch of accounts.

        1 vote
        1. [6]
          Bauke Link Parent
          What's different between Bitwarden and 1Password? From what I can tell they're the same except 1Password is slightly over three times the price ($10/year compared to $2.99/month). (I didn't look...

          What's different between Bitwarden and 1Password? From what I can tell they're the same except 1Password is slightly over three times the price ($10/year compared to $2.99/month). (I didn't look into it much though)

          And what do you mean with "much easier to adopt"?

          (I used KeepassXC a bit between my switch from LastPass to Bitwarden, but didn't want to deal with the upkeep of syncing databases.)

          3 votes
          1. undu Link Parent
            Bitwarden is free software: you can have a personal server if you want to, as well as auditing the code, in case you don't trust third-party ones With 1password you don't have those options, but...

            Bitwarden is free software: you can have a personal server if you want to, as well as auditing the code, in case you don't trust third-party ones

            With 1password you don't have those options, but it may be easier to use (I haven't tried it)

            4 votes
          2. pew Link Parent
            I guess 1password is the most user-friendly and polished password manager out there. I used it for years, back when it was offline-only, MobileMe sync, Dropbox/iCloud sync and now a subscription...

            I guess 1password is the most user-friendly and polished password manager out there. I used it for years, back when it was offline-only, MobileMe sync, Dropbox/iCloud sync and now a subscription model. I really liked it and never ever had a single issue.

            When I reviewed all my ongoing subscriptions last year I decided to get rid of 1Password and migrate to BitWarden with a self hosted version bitwarden_rs so it went from $5 for the family subscription to zero.

            But the 1Password people provide a lot of documentation about their security including white papers. Still, you have to trust them.

            4 votes
          3. [3]
            Adys Link Parent
            1Password is something I've been able to get my mother and tech-illiterate aunt to adopt. KeepassXC is too complicated for them and the risk of losing your backups or not keeping them in sync...

            1Password is something I've been able to get my mother and tech-illiterate aunt to adopt. KeepassXC is too complicated for them and the risk of losing your backups or not keeping them in sync correctly is too great.

            2 votes
            1. [2]
              Bauke Link Parent
              I think you've misread what I said. I know Keepass is complicated and not easy to get into, I'm asking why you recommend 1Password over Bitwarden though. From my experience Bitwarden has been...

              I think you've misread what I said. I know Keepass is complicated and not easy to get into, I'm asking why you recommend 1Password over Bitwarden though. From my experience Bitwarden has been super easy to get into and I could see anyone having very little (if any) trouble adopting.

              As a little aside, privacytools.io even directly mentions 1Password and says you should pick an alternative over it, Bitwarden being the top pick.

              4 votes
              1. Adys Link Parent
                I think I may have not given Bitwarden enough of a chance. I'll look at it again, thank you. Probably because 1Password isn't open source.

                I think I may have not given Bitwarden enough of a chance. I'll look at it again, thank you.

                As a little aside, privacytools.io even directly mentions 1Password and says you should pick an alternative over it

                Probably because 1Password isn't open source.

                5 votes