It's taken an embarrassingly long time to be introduced, but two-step verification is now available in most regions for the PlayStation 4. To set it up, scroll to 'Settings', 'PlayStation Network/Account Management', 'Account Information', 'Security', 'Two-Step Verification'. You'll obviously need a working mobile phone to set everything up appropriately.
The way this works is that you'll receive a verification code via SMS each time you try to log into your account. It ultimately means that, should your password be compromised, a hacker would need to have access to your phone in order to login to your account, which seriously reduces the odds of them gaining access to your stuff.
It's worth setting up, then, and doesn't take many minutes. Yes, this should have been introduced years ago – but hey, at least it's here now.
Update (11:45PM BST): As mentioned in the comments, you can also set up two-factor verification online through here.
[source neogaf.com]
Comments 24
Was excited about this but when I tried to login I was forced to update my password. Long story short, servers are slammed and if you change your password there's a chance you'll be locked out of PSN for 24 hours. Ironic. Sony introduces sonething to improve security and I now can't access my account.
So, I'm assuming that you won't get a text every time you turn your console on? Just when you get sign in on a new device, right?
Great that they finally enabled it. Just so you know, you can also activate it online: https://www.playstation.com/en-us/account-security/2-step-verification/
Also works on PS3 and Vita with single-use device passwords.
@_get2sammyb hey Sammy! Love this site! I'm from Venezuela and what I'm going to ask is off topic, but after the article that said that just cause 3 was barely playable I haven't seen Any update... It's. Fairly cheap on Amazon So... Is there Any news about it? Thanks!!!
Set it up online. Great that it's finally here!
@somotodsyo Thanks, I'll add that to the article.
All set for my three systems. They do behave differently though. PSV and PS3 asked for a device-specific password, while the PS4, which I did last, sent a SMS directly after I logged in with my regular password.
Already secured my ps4 and ps vita, no problem here. For ps vita and ps3 sony will send you the website link that contain the code rather than the code itself. There are backup codes if you somehow doesn't received verification, it can only be used once.
So with a device password required for Vita/PS3/PSP users, wouldn't the account be nearly as vulnerable as it was without 2 factor? The randomly generated string isn't even all that complex.
EDIT: Well not AS vulnerable since most accounts that get compromised probably used shared passwords that were compromised. I do wonder how Sony handles brute force attempts though.
@NathanUC From what I understand the device password works like the SMS code, meaning you'll still be using you old password. The device password is just another layer of security like the SMS. If someone else attemps a login you'll receive another message to set up a new device password.
@fchinaski I don't have my Vita with me right now, but I'm pretty sure it works like most other 2 auth services. The code they gave is used as a full on password for devices that don't support the option ENTER a code.
I could be wrong though!
EDIT: I was wrong, ignore!
@NathanUC Damn, now you got me confused. I'm pretty sure I did login with my old password after authenticating with the device password. It says so on the link you click on your phone to set up the device password.
@fchinaski Looks like I was wrong. Sorry! I read it more closely and do see that it does work similar to an auth code via SMS, only it's only a one time auth.
As long as it is not mandatory I am happy.
Done as I'm paranoid like that!
nice! maybe its good to know in our country some hackers hacking the psn accounts and sell them to people ! with this new thing they cant do it and I am happy for this
So what happens if you lose or break your phone? I am assuming you will have to jump through hoops to get your account back. I can't see it being as simple as getting a new phone and redoing it.
@Tasuki my sentiments exactly. I'll hold off for a bit and see how this plays out.
@Tasuki Not entirely sure, but if you're already logged in a PC you can change your account's phone number from there. Not sure about the PS4 though, and you need to be signed in online to generate a device setup password for the PS3, PSP, & Vita.
@Vincent294 Well that's nice but I wasn't talking about a change of number, I was talking about if you lose your phone or get an upgrade etc.
@Tasuki Well if you haven't gotten a new one you can also turn it off (you'll probably need to enter your password though).
@Tasuki The verification only needs your phone number, if you upgrade your phone, as long as your number stay the same it will be no problem.
It's different compared to app verification like blizzard, where it's the phone itself that needed by the verification system. Once I forgot to delete the app before I upgrade, but it's no problem after I send blizzard email with proof of identification (driver license, etc).
@Tasuki If you lose your phone, there are a few one-use codes unique to each account that you can use instead of the one texted to you. I know you can access them online on a PC, not tried it on a PS4 yet, but presumably you can.
Is there really a need for this if you have a unique password for PSN?
It's a bit of a hassle with 2step when you access the PSN store on web browser by different accounts
Show Comments
Leave A Comment
Hold on there, you need to login to post a comment...