Aegis Authenticator for Android: https://getaegis.app/

Raivo OTP for iOS: https://raivo-otp.com/

2FAS however is cross-plataform, open source, and what I'm using right now: https://2fas.com/

FreeOTP+

You can use Bitwarden Premium for 2FA keys. It's pretty cheap and well worth it to support development ($10/yr).

If you're on Android and don't want to pay for Bitwarden Premium, I'd use something like Aegis Authenticator.

Aegis on fdroid

Bitwarden provides a facility for MFA. Though there's an argument to be made against eggs + baskets. It might defeat threw purpose a bit.

I use Aegis which is opensource and easily encrypted and backed up locally. Saved my ass where I accidentally deleted my 2FA for Bitwarden, thus locking me out in circle of shite. Aegis allowed me to roll back and pull in that one missing key without having to redo a load i'd made since the last backup and all was good.

Google Authenticator is just a UI for TOTP which is standardized. I've used Authy for many years. But there's also many many implementations: https://search.f-droid.org/?q=totp&lang=en

KeePass. You need TOTP plugin for Windows and there is a nice Android app that implements it out of the box. They also support Steam OTP, though it's a bit hard to set up.

There is also KeePassXC if you want a cross-platform client, but I have no idea how good it is as I never used it.

@Kyoyeou @privacy

On iOS/iPadOS/macOS there’s a fantastic app named “OTP Auth”, highly recommend it.

Link for anyone interested: https://apps.apple.com/app/id659877384

Yes: Bitwarden.

Idk about the central instance, but I use my bitwarden (specifically vaultwarden) instance for my TOTP keys. I can just autofill and then it copies the current TOTP key and i can paste it in to log into whatever i'm logging into!

Yubikey is a good option. It supports totp for sites that don't support physical keys.

TOTP is available in Bitwarden.

I use FreeOTP+ on android and WinAuth on windows

i personally like freeotp made by redhat iirc

Bitwarden can 2FA. Works like a charm.

Just plain old TOTP? A lot of applications support it, you could even implement one yourself if you are brave, as the algorithm is very simple (don't do that): https://datatracker.ietf.org/doc/html/rfc6238

Bitwarden supports OTP codes, you need a premium subscription though

I use 2FAuth, it works on both mobile and desktop. I moved to that from Google Authenticator.

I personally use yubioath for anything that doesn't support yubikey. Sounds like that isn't a solution for you (maybe a totally different, open source hardware key?).

I'd recommend against putting your 2FA inside bitwarden. It's not a very good second factor if both factors can be exposed by getting into your bitwarden.

You can have your 2FA codes in BitWarden.

People say it defeats the purpose of 2FA but each to their own.

I use andOTP on Android. Has encrypted backups, supports various OTP protocols, and is just generally a good UX.

If you want an app I would recommend freeotp+ is on fdroid and you can export/import your settings for backup. I use sync thing for this. I

I've been using Authy for years, but I don't think it's open source.

If you're interested in moving away from Google Auth, look into a password manager for added security. Along with storing passwords, managers like 1password support 2FA and store your information in the cloud using a Zero Knowledge model. I've been using it for a few years and have not had any reason to use Google Auth.

I use Authy which is great. Much better than google authenticator.

Bitwarden is also great, but I kind of don't want everything to be in one place.