(my question is ONLY in the context of 3rd my party accounts, such as Merrill Lynch, eTrade, eBay , PayPal ect... not for your place of work using VIP 2FA where you can easily contact your work IT admin)
My question is- on the Sym. VIP access iOS app, how do I login to My Paypal or My Merrill Lynch account *IN THE CASE that* i get a *new* iPhone , or have to do a full iCloud Restore ? as the VIP App's Credential ID will of-course CHANGE on new device/restore, *thus* the 30s generated VIP Sec Code will not match up with my prior codes (so i wont be able to login to account at that point).
The KB / faq doc gives this unacceptable answer to my question:
"Use the new Credential ID.
You will need to register the new Credential ID with the vendors you use your 2FA (2 factor authentication) services with. Each vendor will need you to update your Credential ID with them "
So how exactly do you "register the new Credential ID with the vendors" IF you CANT login to the account any longer??
If the answer is to have a backup method to logging-in to your various accounts, such as SMS backup, that defeats the ENTIRE purpose of using 30s generated codes. (as all a hacker has to do is click i dont have my VIP access code, and you are back to SMS based 2FA)
I have used TOTP based QR codes for many years, and these QR codes i physically BACKUP/PRINT offline, when i initially scan them into VIP Access . ( so i can always re-scan them into any new phone or device i may have to get in the future, and can still login to these services).
I have searched the Symantec Forums vigorously, and the only "answer" i found to this:
" Contact your Workplace IT admin to update your Credential ID"
(un acceptable, as im asking about ebay, eTrade ect... its un-reasonable to expect users to have to call in and prove their identity to ALL their VIP 2FA (non-QR code) based accounts EACH time user gets a new phone or does a restore. Thats also assuming EACH of these providers's phone support reps even KNOW what a Symantec VIP 2FA Credential ID is...)
I have also read this FAQ / support doc, but it does not offer a complete or valid answer :
http://www.symantec.com/docs/TECH236551
Please let me knwo the answer or way to address this issue.
Thank you!
-D