I am aware that IE has Multi Factor Authentication (MFA) for logging into the website, but that the only authentication method supported currently is login approval from the mobile app.
I’ve decided not to have the IE app on my phone, because of the ease of stealing funds if somebody is able to see me input my phone passcode, then steal my device. But I would still really like to use another form of MFA, that isn’t a code sent to my phone.
My preferred one is using an authenticator app to produce a time-based code for logging in. With Authy (one such authenticator app), I can make sure that thieves can’t access my codes without my face or a pin that is separate from my phone’s passcode, so this method is secure, even if my phone is stolen. Plus the codes are backed up in the cloud, so I can install the authenticator app on a new device, and get them back.
Another vote for this! I like having my 2FA codes in my iCloud Keychain.
If my phone dies/disappears/gets stolen, I have no way of accessing IE without contacting support at the moment.
Banks in general don’t seem to offer this. The only one I’ve come across yet is Trading212.
Ok my interactive brokers app (IBKR) has the same system as IE, more or less, and they are known as gold standard traders/investors platform with very advanced IT so I don’t see a major difference. But what they do is if you want to trade, you normally have to sign in with your password, but not always. We know that a lot of us like to go onto the app frequently, even for SIPP accounts, there is a fair amount of activity to monitor every month. And do we want to use an authenticator that often, as with PayPal? Possibly….
Another vote for adding standard authenticator app support (ms, google, bitwarden, whatever) instead of having to use the IE app.
I originally installed the IE app on my android tablet, but now use a laptop for everything. It is still annoying that IE demands I get the tablet out to read a code off the app to authenticate the laptop. A passkey would be ideal, but providing generic authenticator app support would at least mean I could use my phone.