Uploaded image for project: 'Bitbucket Cloud'
  1. Bitbucket Cloud
  2. BCLOUD-22673

Disabling two-step verification and re-enabling it again will not clear the security key entries for the old devices

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Low Low
    • User - 2SV
    • None

      Issue Summary

      Disabling two-step verification and re-enabling it will not clear the security key entries for the old devices

      Steps to Reproduce

      1. Enable two-step verification and add security keys from a device.
      2. Disable two-step verification and then re-enable it using a new app or the same app with a new entry.

      Expected Results

      Security keys associated with any old devices should be removed once 2SV is disabled.

       

      Actual Results

      Previously created security key entries will remain. If they are not removed, the next time the user logs in, they will be asked for security keys (pass keys).

      Workaround

      Users should manually delete the old security keys after re-enabling 2SV.

              Unassigned Unassigned
              f2cc5e9850cf Suhas Sundararaju
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated: