Google Authenticator type codes
Step2 generates Time-based One-Time Passwords (TOTP) as well as HMAC-based One-Time Passwords (HOTP) just like Google Authenticator does so it can be used for any services that support Google Authenticator.
Step2 provides an Apple Watch app to allow you to quickly and easily get your authentication codes with a glance to your wrist.
The Step2 Apple Watch app provides a "complication" that can be added to your watch face to give you quick access to the Step2 app with a tap on the watch face.
Step2 never sends any data across the internet. All the data stays on your device. You are in complete control of your authentication code data.
To add accounts to Step2, most sites can provide a QR code to scan. With Step2, you can simply scan the provided QR code to instance add the account.
Accounds can be added by manually entering the account data, including your secret key.
Easy to use
All of your authentication codes are presented on the first screen in a scrolling list view. This makes it easy and quick for you to get to your codes. The accounts can be easily rearranged in any order, so you could put your most used accounts near the top of the list.
Tapping on an account in the list instantly copies the code to the clipboard to make it easy to then paste into the form on the service you are logging into.
Authentication codes work with the use of a "secret key". Many authenticator apps (including Google Authenticator) do not allow you to see this secret key once the account has been setup, making it difficult to move to a different app/phone.
With Step2, you can easily view your secret key as well as display a QR code of your account information. Both of these can be used to easily add your authenticator accounts to another app/service or to make a backup of your data.
Swiping right on an account displays a QR Code button. This button will display the QR code for that account. This could then be used to add the account to another phone or a screenshot could be taken of the QR code as backup.
For accounts with HMAC-based (HOTP) passwords, a swipe to the left on the account reveals a button that will increment the counter for that account, which causes a new authentication code to be generated.
Step2 supports Slide Over as well as Split View on iPad. This allows you to have Step2 and another app open at the same time side-by-side. You can then easily copy your authentication codes from Step2 and paste them into your app's window.
Step2 can generate Time-based One-Time Passwords (TOTP) as well as HMAC-based One-Time Passwords (HOTP).
Time-based (TOTP) passwords are the most common. These are generally 6 digit codes that change every 30 seconds. When accessing a site that uses these, you simply enter the current code when asked. This enhances security because even if someone sees one of your TOTP codes, it is only valid for 30 seconds.
HMAC-based (HOTP) passwords are also known as "counter" based passwords. These codes generally change after each use. There is a counter that you increment with a push of a button in Step2 in the iOS app or on the Watch app. Each tap of the button increases the counter and generates a new code.
Step2 supports SHA1, SHA256 as well as SHA512 hashing algorithms. These are generally setup automatically when you create the account but can be changed manually if required.
Step2 supports 6 and 8 digits authentication codes. 6 digits codes are the most common, but 8 digits codes are supported as well.
- Any iPhone or iPad with or without Apple Watch
- iOS 11.2 or later
- Watch OS 4.2 or later
Where can I use Step2 codes?
Step2 provides authentication codes used for 2-step authentication by many websites and services (including Google, Facebook, Dropbox, Microsoft, LastPass, Amazon and many others) in order increase security of your accounts.
Step2 works with any website or serivce that supports Google Authenticator. Google was one of the first to offer an "authenticator" app and most websites that support this type of 2-step authentication refer to it as "Google Authenticator" even though you can use any app that generates these types of codes (such as Step2).
What is 2-step authentication?
Many websites and serices offer increased security using 2-step authentication. 2-step authentication works by requiring 2 separate steps of authentication. In most cases, the first step is your password for the site/service. If 2-step authentication is turned on, you would then be required to enter a second form of authentication. The most commond form of this second factor of authentication is to use what are known as "one-time passwords". These are the codes that Step2 generates for you and can be used as the second form of authentication with these sites/services.
Why am I getting an error downloading Step2 from the App Store?
If you are receiving an error in the App Store when attempting to download Step2, you can get the issue resolved by going to iTunes Store Customer Support.
What do I do if I have billing or purchasing issues with Step2?
To resolve billing or purchasing issues, you can get your issue resolved at iTunes Store Customer Support.