From e5fd7a75d71d4e452cd4ace806721c5a833141d2 Mon Sep 17 00:00:00 2001 From: James Hochadel Date: Wed, 6 Sep 2023 11:24:11 -0400 Subject: [PATCH] Remove LastPass reference LastPass has an [extensive history of security incidents](https://en.wikipedia.org/wiki/LastPass#Security_incidents) and we should not include it in our list of authenticator apps, lest its inclusion be misconstrued as a recommendation. --- _docs/getting-started/accounts.md | 1 - 1 file changed, 1 deletion(-) diff --git a/_docs/getting-started/accounts.md b/_docs/getting-started/accounts.md index d8eeea758..bc4f394b5 100644 --- a/_docs/getting-started/accounts.md +++ b/_docs/getting-started/accounts.md @@ -26,7 +26,6 @@ If you were invited with an email address that isn't part of an agency with sing Setting up a cloud.gov account requires using a password and Time-based One-Time-Password (TOTP) application. Any application or service which is compatible with RFC [6238](https://tools.ietf.org/html/rfc6238) will work. We recommend leveraging an authenticator application or service which supports cross-device or backup access so you don't need to reach out to cloud.gov support when you need to replace your phone or laptop. Here is a non-exhaustive list of cross-device authenticators which are compatible with cloud.gov: * [Microsoft Authenticator](https://www.microsoft.com/en-us/account/authenticator) -* [LastPass Password Manager](https://www.lastpass.com/solutions/business-password-manager) * [1password](https://1password.com/) * [Authy](https://www.authy.com/app/mobile)