Back to minecraftBack to minecraft.net

This category is for feedback/ideas related to the Minecraft franchise, not gameplay. No support issues, lists of general ideas, or bug posts please!

← Minecraft (Franchise)
565

2FA (2 Factor Authentication)

released

With tons of Mojang accounts getting compromised and even sometimes youtubers and staff accounts getting stolen, Mojang should really do something to combat this like adding 2FA using the Google Authenticator app, this will help users know their account is extra secure and lower the amount of compromised accounts.

Avatar
Registered User shared this idea

62 Comments

Post is closed for comments.

Sorted by oldest
  • 10
    Registered User commented
    Comment actions Permalink

    I think adding third party companies like Google shouldn't be an issue, but other authentication apps could be used for Two-Factor Authentication on the Minecraft Feedback Website.

  • 8
    Registered User commented
    Comment actions Permalink

    This would be greatly helpful to avoid people compromising accounts when it happens so often.

  • 11
    Registered User commented
    Comment actions Permalink

    There should also be backup codes (printable), if you lose your 2 factor device. 

     

     

     

     

  • 12
    Registered User commented
    Comment actions Permalink

    My acc just got compromised. Was able to retake it and change the password but lost my display name.
    C'mon guy. Not an argument I know but it is 2018. 2FA is easier than never before and risks are higher than ever as well.

  • 5
    Registered User commented
    Comment actions Permalink

    How has this still not been implemented after almost 10 years of the game? It is crucial to keep my stuff safe!

  • 2
    Registered User commented
    Comment actions Permalink

    I sure do support the idea, however a long enough password is literally unbreakable, so I think players should give more attention to their online security.

    But yeah, sure, adding two step authentication is a good idea, at least as an option for the player.

  • 8
    Registered User commented
    Comment actions Permalink

    it's 2019 now, it's 100% unacceptable for sites with private information to not have 2 factor authentication

  • 4
    Registered User commented
    Comment actions Permalink

    2FA is an added layer of security that makes it that much more difficult to crack accounts. I REALLY think this should at least be an optional feature that is implemented by Mojang. There can be multiple people with access to passwords/session ID's, but only one person with access to an authorized 2FA device (hopefully the user)

  • 3
    Registered User commented
    Comment actions Permalink

    As someone that had their account messed with as well, I agree that this should be an option. It should be, however, a 2FA system that works by SMS and any 2FA app, by providing the user with the key.
    If they implement it, they can continue telling players that they were responsible for their security.. It is important to be offered a wide range of accessible features for security purposes. Hate to say it, but even Google/Facebook have better security, even though they are not known for privacy.

  • 2
    Registered User commented
    Comment actions Permalink

    honestly just dont give out your email and password and boom problem solved

  • 3
    Registered User commented
    Comment actions Permalink

    Still no 2fa they should be ashamed yes i agree you should't give your email or login but these things can leak we should atleast be given 2fa options for these days its the standard, having unique password to but its not possible to have unique e-mail adress for everything sometimes they leak and only takes sometime to brute force it once password is not changed

  • 2
    Registered User commented
    Comment actions Permalink

    That sounds like a good idea overall but please don't use google

  • 5
    Registered User commented
    Comment actions Permalink

    Now that Minecraft is a Microsoft software, you can even use Microsoft's authenticator. I'm guessing that Microsoft have all the code for you to use already. This should be a easy fix for the Minecraft team. Or maby just make it possible to log in with our Microsoft account since it already has 2FA as a security option.

  • 4
    Registered User commented
    Comment actions Permalink

    I would really love 2FA, preferably via a phone number or an app such as Google Authenticator, but email is good as well. I would also like an option in account settings where you have to log in each time you open Minecraft (like forced so even if you tick, say, "Stay Logged In", it will still log you out when you close the window). I don't care if it's troublesome as long as it means my account is secure. And if it's an option in account settings then people should be able to turn it on/off, anyway. But, if that's not possible, please at least 2FA. It's crazy that MC does not have it yet! Need it for the Java version!

  • 7
    Registered User commented
    Comment actions Permalink

    These just feels like a feature that should have been in years ago

  • 6
    Registered User commented
    Comment actions Permalink

    2020 now. I'm also really surprised and especially disappointed that there's still *NO 2FA*... This feature is necessary, as literally "tons of accounts" got compromised... There are some people that gave up on playing Minecraft, because of this sht... something has to happen!... My accounts are nowhere compromised, because I don't fall for scammers / websites that looks like the original website... But as an Network Security Pentester (a white hat) in self-education, I just hate it to see someone lose access to something they OWN, as their OWN Property. A bought License, Gone, to someone else. I'm just so disappointed... this is a must-have feature... *sigh*... Hackers shouldn't rise up.

  • 3
    Registered User commented
    Comment actions Permalink

    I think its a good idea to allow people to use Yubikey or Google Authorizer with their Minecraft Java accounts

  • 2
    Registered User commented
    Comment actions Permalink

    There are a lot of servers that really mean a lot to people (hypixel is the main one) where people spend hundreds of hours grinding, and playing the game. I know for a fact that some items can go for hundreds of real life dollars, and most of these items are from a black market of hacked accounts. By creating a game that means so much to so many people, you are taking the responsibility of protecting their progress, and accounts. One of the only ways I can think of doing this is with 2FA. In 2020, there is no excuse for having a lightweight SMS 2FA system, that could greatly improve account security. Please, Minecraft, add 2FA.

    #minecraft2FA

  • 2
    Registered User commented
    Comment actions Permalink

    Please! This would be amazing to have.

  • 3
    Registered User commented
    Comment actions Permalink

    I think this is a must have nowadays. Steam, origin, epic games all have it already.

  • 2
    Registered User commented
    Comment actions Permalink

    My account just got compromised as well, 2FA in modern days is a must-have-feature.

  • 2
    Registered User commented
    Comment actions Permalink

    No one likes security questions. They can be stolen too. Something you know and something you have is the best security.

  • 2
    Registered User commented
    Comment actions Permalink

    Besides the addition of 2fa, mojang needs to remove the old security questions (as 2fa will make it obsolete) and the old google captcha (choose a thing from pictures) as its really annoying to use all the time when I log in or change my password.

  • 2
    Registered User commented
    Comment actions Permalink

    2FA is a fantastic idea in my opinion - an increase in security is always good regarding online accounts.

  • 2
    Registered User commented
    Comment actions Permalink

    This needs to be added. Countless friends of mine have recently had their accounts compromised. With servers like Hypixel and their immensely popular SkyBlock it takes days, weeks or even months to obtain an item and all their work can be lost in an instant. It's really disheartening that a game that has been available for over 10 years does not have 2FA implemented as of yet.

  • 2
    Registered User commented
    Comment actions Permalink

    2020 and it still doesn't exist, but I do get why it isn't implemented yet if anything. Tons of third party launchers would break if people tried to log in and had 2fa on, until it gets updated, some don't even get updated ever.

  • 2
    Registered User commented
    Comment actions Permalink

    Still don't know why they don't add this. It is an extremely important time for 2FA to be added due to accounts being hacked often due to poor password practices.

  • 2
    Registered User commented
    Comment actions Permalink

    I desperately need this. I had a scare with another game account for which I already had 2FA, and I need 2FA for Minecraft.

  • 2
    Registered User commented
    Comment actions Permalink

    Got hacked at 5:40 am, Mojang should at least flag suspicious activity ;/.

  • 2
    Registered User commented
    Comment actions Permalink

    I’ve owned multiple
    minecraft accounts. They usually end up compromised and I have to go through recovery, I would love this to be brought back up as a possibility.