Use a mobile as a security key for 2-Step Verification
We’re adding an option to use your Android phone’s built-in security key for multi-factor authentication in G Suite. All phones running Android 7.0+ (Nougat) have a built-in key which can be activated. This means your users can use existing phones as a primary 2-Step Verification method to protect against phishing. Using a phone as a security key is currently offered in beta.
Admins and end users
Why you’d use it
2-Step Verification greatly improves the security of your account by adding another layer to your account security and making it more resistant to phishing attacks. By adding the additional option of using your Android phone’s built-in security key, we’re expanding access to phishing-resistant 2-Step Verification method in a convenient form – your phone. This can make it faster for you to implement 2-Step Verification in your organization while keeping user training and overall costs to a minimum.
Previously, in order to protect your users against password phishing, the only option was to use a security key fob. With this beta, their mobile phone can be that security key.
How to get started
- Admins: See how to enforce the use of security keys in your organization.
- End users: See how to activate the security key on your phone.
- Available to G Suite, Cloud Identity, GCP customers, and personal Google Accounts.
- Available on phones running Android 7.0+ (Nougat) with Google Play Services.
- Compatible with Bluetooth-enabled Chrome OS, macOS X, or Windows 10 devices with a Chrome browser.
- Help Center (Admin): Enforce the use of security keys to help prevent phishing
- Help Center (End Users): Use your Android phone’s built-in security key
- Google Cloud Blog: Increasing trust in Google Cloud: visibility, control and automation
- Rapid Release domains: Full rollout (1-3 days for feature visibility) starting on April 10, 2019.
- Scheduled Release domains: Full rollout (1-3 days for feature visibility) starting on April 10, 2019.
G Suite editions
- Available to all G Suite editions in beta.
On/off by default?
- If 2-Step Verification or Security Key Enforcement is turned on for an organization, Android phone will be available as an option for security keys by default.
Stay up to date with G Suite launches
Powered by WPeMatico