CRA multi-factor authentication | General financial discussion | Discussion forum

Please consider registering
guest

sp_LogInOut Log In sp_Registration Register

Register | Lost password?
Advanced Search

— Forum Scope —




— Match —





— Forum Options —





Minimum search word length is 3 characters - maximum search word length is 84 characters

sp_Feed Topic RSS sp_TopicIcon
CRA multi-factor authentication
January 23, 2021
12:14 am
Adam1
Member
Members
Forum Posts: 59
Member Since:
August 28, 2019
sp_UserOfflineSmall Offline

I recently logged into my CRA account and before I got to the home page, it prompted me to set up multi factor authentication, where you provide a phone number that will receive verification codes every time you log in, either by text message or an automated voice call.

I don't think this was available before. It also appeared to not be optional, but it did mention I was selected for this feature, so maybe not everyone will see it yet. They will probably make it mandatory for everyone accessing CRA online services at some point.

This should improve account security and is a good solution to further prevent CRA accounts from being compromised, as this was an issue in the past year.

Adam

January 23, 2021
7:50 am
Slybanking
Member
Members
Forum Posts: 103
Member Since:
July 28, 2016
sp_UserOfflineSmall Offline

My access method has not change yet so you are probably part of a trial.
And you are right, its a good thing. Can't be too careful with our CRA accounts.

January 23, 2021
9:00 am
savemoresaveoften
Member
Members
Forum Posts: 748
Member Since:
March 30, 2017
sp_UserOfflineSmall Offline

definitely a good thing. 2 step verification is the one of the most easiest to use and secure method in my mind.

January 24, 2021
5:07 am
pwm
Headingley MB
Member
Members
Forum Posts: 77
Member Since:
October 21, 2018
sp_UserOfflineSmall Offline

I agree. 2FA is a good thing. No changes for me yet at CRA, so is seems they are phasing it in. TDDI implemented it a while ago. They don't ask for the second code very often. Only happened twice in the last year even though I always use the same PC.

January 24, 2021
1:14 pm
Winnie
Ontario
Member
Members
Forum Posts: 358
Member Since:
December 7, 2011
sp_UserOfflineSmall Offline

CRA implemented this new multi-factor authentication feature (a one-time passcode that is sent via text message or landline) only for some selected taxpayers (personal and business).

To disable (cancel) this multi-factor authentication, you will need to call CRA. At this time it's not possible to disable it online.

January 24, 2021
1:39 pm
Dean
Valhalla Mountains, British Columbia
Member
Members
Forum Posts: 769
Member Since:
January 12, 2019
sp_UserOfflineSmall Offline

Winnie said

. . .

To disable (cancel) this multi-factor authentication, you will need to call CRA. At this time it's not possible to disable it online.  

I don't understand ... why would anyone want to Disable a very important security feature ❓

Perplexed,

    Dean

sf-cool " Live Long And Prosper " sf-cool

January 24, 2021
2:33 pm
Winnie
Ontario
Member
Members
Forum Posts: 358
Member Since:
December 7, 2011
sp_UserOfflineSmall Offline

I have a landline phone (Bell, but offered via reseller) and it's not possible to add "call waiting" option, have only one line.

Usually my phone is busy and I can't receive that multi-factor authentication from CRA computer.

And, my security questions are so good, that I'm confident, that I don't need that second multi-factor authentication ever.

For example, for security question "My first car?" my answer is "Aaruko0".

But, it just me!
You don't have to disable it, if you like it or if your first car was "Pontiac", just kidding))

January 24, 2021
8:22 pm
mustang
Member
Members
Forum Posts: 47
Member Since:
January 7, 2020
sp_UserOfflineSmall Offline

When I logged into CRA MYACCOUNT today, it told me I had been "selected" for the two factor authentication, got me to enter phone number, called me with code, all good
Then, they sent me an email saying I was now enrolled in 2 factor, and if I hadn't requested it, that I should call them
That kind of confused me, since, technically, I hadn't requested it-- they did

Then, ironically tonight, I got a scam text pointing me to a phishing site, if I wanted to re-establish on-line access
It all seemed like one heckuva coincidence-- and rattled me some

January 25, 2021
4:17 am
Alexandre
Member
Members
Forum Posts: 469
Member Since:
November 8, 2018
sp_UserOfflineSmall Offline

mustang said
Then, ironically tonight, I got a scam text pointing me to a phishing site, if I wanted to re-establish on-line access
It all seemed like one heckuva coincidence-- and rattled me some  

For many years I have been submitting tax returns with no issues. Then, one year, I got request from CRA to provide supplementary information, which I did. As I recall they asked me to upload copies of bills for medical expenses, for them to review.

Since then, every year, I am regularly getting spam phone calls telling me I owe CRA, my accounts will be frozen right away, my car and property will be seized, criminal proceedings are about to start - unless I "press 1 to speak to a representative."

One heck of coincidence, I must say, too.

January 25, 2021
7:12 am
savemoresaveoften
Member
Members
Forum Posts: 748
Member Since:
March 30, 2017
sp_UserOfflineSmall Offline

Dean said

I don't understand ... why would anyone want to Disable a very important security feature ❓

Perplexed,

    Dean

  

I logged in just to see if I am selected and looks like I am.
Set it up and its all good.

pwm said
I agree. 2FA is a good thing. No changes for me yet at CRA, so is seems they are phasing it in. TDDI implemented it a while ago. They don't ask for the second code very often. Only happened twice in the last year even though I always use the same PC.  

Got mine setup today after I log in to see if I am selected. It will be even nicer if I have the choice of receiving the code in either email or text msg every time when I log in. This way even my phone is not around I can still log in via email. The chance of that happening is extremely rare cuz my phone is more important than my wallet these days !

January 25, 2021
8:42 am
pwm
Headingley MB
Member
Members
Forum Posts: 77
Member Since:
October 21, 2018
sp_UserOfflineSmall Offline

savemoresaveoften said

I logged in just to see if I am selected and looks like I am.
Set it up and its all good.

pwm said
I agree. 2FA is a good thing. No changes for me yet at CRA, so is seems they are phasing it in. TDDI implemented it a while ago. They don't ask for the second code very often. Only happened twice in the last year even though I always use the same PC.  

Got mine setup today after I log in to see if I am selected. It will be even nicer if I have the choice of receiving the code in either email or text msg every time when I log in. This way even my phone is not around I can still log in via email. The chance of that happening is extremely rare cuz my phone is more important than my wallet these days !  

I agree. TDDI gives you the choice of phone or text. Sometimes phone works better.

June 21, 2021
4:40 am
Alexandre
Member
Members
Forum Posts: 469
Member Since:
November 8, 2018
sp_UserOfflineSmall Offline

CRA just enrolled me in their multi-factor authentication.

Despite them stating that only landlines and cell phones can be used for this service, VoIP phone numbers are supported, too.
I've entered my Fongo phone number and verified it works. Both voice and SMS.

Please write your comments in the forum.