Totally all for 2FA, but an option for a few hour timeout would be great. I don't mind logging back in, but having to grab my phone to get the code can be annoying.
-
You have that option, it violates PCI but you're free to do it. Or just use a Yubikey and leave in plugged into your computer and then you don't need your phone. -
Thanks for the response Rick. Are you referring to the "Administration Session Timeout:"?Comment
-
-
I was going to reference some other site that save the 2FA for a period of time that is separate from the login timeout, but that I totally forgot about PCI compliance. Totally understand it doesn't make sense to spend time on a feature that violates that. Thanks for the reply
Comment
-
Yeah we looked at letting you say something like "Remember this device for 30 days" kind of thing, but PCI won't allow that.Comment
Comment