It appears that Chrome's cookies are allowing me to sign in to my BOX account while bypassing the 2FA that I want activated on my account. I found that if I try to log in using an 'In Private' browser, the 2FA works. If I get into Chrome and delete cookies, the 2FA works. If I log out of BOX and log back in later (without deleting cookies), I'm allowed into BOX WITHOUT the 2FA sign on requirements. Is there a fix for this?
Question
Chrome / Cookies & 2FA
Hi Daniel,
Welcome to the Box Community! I'm happy to help.
After the initial successful login, Box will remember the browser and you will not be prompted for 2FA if you need to log in again. Only clearing the browser's cache and cookies will re-prompt 2FA.
https://support.box.com/hc/en-us/articles/360044195853-Configuring-Two-Step-Login-Verification
Best,
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.