[implemented] Two Factor Authenticator for Plex account

Still nothing. Security is a big issue!

We’re now at over 200 user replies - 0 staff or moderator replies here.

This request addresses a risk to our personal data we’ve made significant investments in and choose to use with your platform. How about some communication

I’m sorry we don’t make promises about possible future features and do not give timelines. If the answer was a flat out “no”, we would close the this topic.

Wow. You would think a thread all the way back from 2015 with hundreds of replies (many from plexpass members) would get more attention than a snarky reply from a Plex employee. Believe it or not, Plex does have a moral and business duty to protect the private data of its customers. If you guys can’t accomplish that with free and simple API’s, then I would start to regret buying a plexpass right about now.

Care to give that response another try? I think we deserve better than that.

@Quadrillity, I agree with you.

@BigWheel I rather get a flat out ‘no’ than waiting for years and hoping that somebody @Plex noticed a highly requested feature .

+1 thanks

+1, thank you!

+1. As someone who currently tracks users by IP to help bring awareness to my users in case their account gets compromised, this would pretty much solve that problem entirely.

+1 Thank you.

+1 for better security controls

Totally agree - 2FA is urgently required. #1 on my request list

+1 for TOTP and FIDO U2F.

No authy. No email or SMS. Nothing proprietary.

+1 MFA is a must

I would also like to see MFA with TOTP/FIDO U2F/YubiKey for login on *.plex.tv.
On the server side, I would like to see a checkbox to stop users from login that did not login via MFA.

Permitting to enforce https traffic was an important step to enhance security on the transport layer. MFA has the same importance when it commes to account protection!

+1 Please add

+1 Absolutely!

+1, my Account just got hacked 2 days ago and i didn’t even got a mail that someone logged in or changed my PIN. (Ok i must, admit my password was a few years old and not the most secure one but still it’s a must )
Luckily, no files were deleted, he/she just changed the PIN and maybe downloaded some files.

Btw. it would also be nice if you could add some security restrictions for the plex server, so that the option to switch the deletation of the files on/off would only be avaible on the local the server.
It realy sucks, that a Hacker who hacked into the admind account could simple turn the function on and delete the whole Library.

So I’ve been using plex for some time now and its a fantastic product, so thanks for all the amazing work you guys have put in, its honestly a wonder. That said I’m more than happy to give back and buy lifetime plexpass but honestly with this lacking level of security considering its tied to your own personal data and accounts can be compromised and stolen, i personally don’t see how i can risk it.
Id imagine I would purchase the pass when you guys have implemented TOTP, some official word on this would be happily received by many id imagine.

I’m sorry, I don’t see the logic here. Are you suggesting the risk is directly tied to money?
I mean, the risk is there. Your stuff can be compromised and stolen yet you still use the product. Seems like you ARE taking the risk. That’s a big gamble on your part…

I believe what he is saying is that he will be willing to purchase this product when the devs commit to implementing Multi-factor Authentication.