When tech plays hard to get . . . into
There’s satisfaction to be had in spades when you solve a tricky tech problem. In reality nothing trumps “it just works” because life’s too short and you can almost feel the hourly earnings slide as you try one thing after the other, yet the computer continues to say no.
Sometimes you can’t avoid wasting life though, like recently when I tried to join Microsoft Teams for a collaboration project.
I’ve used Teams before. While it wasn’t as easy to get going as Zoom, for example, the collaboration software mostly worked for video calls. This time though, I was joining a more permanent online group.
To join, I first had to click on and accept an emailed invitation which took me to a sign-up web page. I used the email address in the invitation to create an account, naturally. Microsoft’s systems then recognised that I had used Teams before and told me to use another address.
That didn’t seem like a good idea and I used the email address in the invitation anyway to sign up, as Teams offered that option.
All right, I got an email asking me to click a link to verify that address, and was taken to a Teams page with Captcha to complete the verification. That stands for Completely Automatic Turing test to Tell
Computers and Humans Apart, and it’s an absolute nuisance.
Predictably enough, the Captcha system refused to accept my correctly entered characters.
Since Captcha is very good at denying blind and partially sighted people access to websites, Microsoft and others have added an “audio” button that reads out the distorted characters you’re meant to enter.
Sometimes this works, but the Teams Captcha system read out
“Track. Happens. Mmm. So furry.” in a female robotic voice. That was totally different from the WWXDQKGG on the screen, and didn’t work either. I refreshed the Captcha and this time the system accepted what I typed.
I’m in! Oh wait: don’t use your browser; use the Teams app for macOS instead, Microsoft demanded. Fine, the app it is then, except it wouldn’t accept the email address I signed up with. Back to the browser and the Teams page which now had decided that it was the macOS app or nothing.
It was now time to fix another problem: being locked out of my Google account.
Thanks to endless phishing and automated hijacking attempts, I first enabled two-factor authentication for my account, and after that enrolled in Google’s free Advanced Protection Programme for better security.
It means I use a little Yubikey cryptographic device, or an internal security key in smartphones, to convince Google it’s really me, and I should have access to my account.
Without those keys authenticating you locally on your device and not to a server via the internet, it’s nigh impossible to get into your APP and 2FA protected Google account.
I know that for sure, as the Yubikey registered to my account didn’t authenticate me on the review smartphone I was setting up. This even though the key was recognised by Android. As an added nuisance the Yubikey had to be inserted after the password entry or the onscreen keyboard wouldn’t pop up so you couldn’t type anything.
Using the internal key in an existing Android phone used to work to authenticate on the iPhone but now it didn’t. Error messages? None of those: Google’s systems won’t tell you why things went wrong.
This was bad. It takes three to five working days to have Google’s support staff help you get back into your account, because this is hard core security right?
The Yubikey worked on a laptop though, and I logged into Google and unenrolled from the APP and disabled 2FA and finished the phone setup with password-only authentication. I didn’t want to be vulnerable and re-enrolled in APP, enabled 2FA and added two Yubikeys to my account. It’s good to have at least two in case you lose one.
And look! Now the Yubikey worked on the Android phone I had set up. No idea why it worked, but I added the Android phone’s internal registration key to the Google 2FA.
I was still locked out of Google on my iPhone, as it requires a Lightning port Yubikey which I don’t have.
Furthermore, Google’s Smart Lock app on the iPhone insisted that the internal key on the Android phone wasn’t registered when it was.
Instead I was asked to generate an access code with Smart Lock. Tried it, and was asked to sign into Google with Smart Lock which… required a sign-in code for Smart Lock.
No, I didn’t start throwing expensive handsets around, because I had the Android device that could authenticate logins and Smart Lock installed on an iPad Pro.
I used the Android phone to approve the Google sign-in via Smart Lock on the iPad Pro. With Smart Lock on the iPad Pro I then generated an access code for the iPhone. To my surprise that worked.
I’m waiting for feedback on what happened and a perseverance award from Google, but doubt I’ll get either.
As for Teams, fingers crossed everybody that I won’t have to do battle with that for a while as I need to get some work done.