Hi… When I login to FlightAware, I am getting prompted twice for two different multifactor mechanisms… The first is an alphabetical code that is sent to my email address, and then I am prompted again on a secondary page with the value in my authenticator app… How can this be fixed? I am a contributor with an Enterprise account - not sure if that makes a difference.
Same here. Also I get an email telling me that a login has occurred.
If you do not want the MFA, I can remove it from your account. FlightAware has gone passwordless, so access to the email registered on the account is required, but the MFA is optional.
1 Like
Hello, can you advise with these related questions please? I’ve not seen any comms from FA about these changes.
Is it possible to access MFA settings as a user? I have seen them offered, but if not accepted I cannot find a setting for them.
I’ve seen some people say they are phone-based, others saying they have TOTP MFA. Can you clarify please?
Is it possible for an account to return to a password login? I always have access to my password manager but I don’t always have access to email.
Is the original account password used for anything at all now or can it be removed from password managers?
Is it the data breach last year which prompted these changes?
This post may answer some questions for some folks.
3 Likes
Can you please remove the MFA from my account?
1 Like
I haven’t found a solution to this double-MFA either. Super annoying. I think it’s been bungled on the back end. We only need one or the other not the alpha code to the email AND a numeric code from the authenticator app to login. Sheesh!
I’m ok with some form of MFA, but I’m getting TWO requests for verification, a 6-letter code to email, and then a second prompt for the 6-digit numeric code from MSFT Authenticator. It’s a real challenge trying to do this from a mobile device. Trusted devices would be a nice option, but I’ll settle for one mode of MFA. Thanks in advance!
The information in this post might help:
1 Like
I emailed contact@flightaware.com stating that “I want to discontinue using my existing authentication app.”
Within two hours, I received the following response from support@flightaware.com
“I have reset your secondary authentication setting. You should now only require the 6-digit code sent to your email to log in to your account. Please note, once you are logged in, each session should last 30 days. Every time you access your account, the 30-day session will reset. So in other words, you should not have to go through the sign-in process each time so long as you are signing in frequently and not logging yourself out of the account manually.”
1 Like
Interesting. Thank you