Login to your account has been temporarily restricted...

[Kit-Kat]

I think you're confusing ISP for IP.

Your ISP can mess it up and make you lose your connection, this counts aswell (talking from experience here).

[Khyra]

I ended up disabling my security token because I can't log into this forum or Lodestone on Linux Chrome when it is enabled. Very strange but I've seen a few others report the same issue. Works on Windows just fine, game works fine, but I get an error message when trying to log in from Linux. So token/app doesn't work for me, but I'm not that concerned and haven't had any other issues.

[KaedrianLiang]

would suffice.

No it wont.

Can't keep a password after a security compromise. If they got your game login, odds are they also got your email login and other things you do on your compromised machine.

In short they can impersonate you. So the current system iis working as intended, keeping your account secured. Even then the current lockdown system can be bypassed by what i i'm mentioning.

I ended up disabling my security token because I can't log into this forum or Lodestone on Linux Chrome when it is enabled. Very strange but I've seen a few others report the same issue. Works on Windows just fine, game works fine, but I get an error message when trying to log in from Linux. So token/app doesn't work for me, but I'm not that concerned and haven't had any other issues.

The system time on your game machine needs to be synchronized with a world clock as well as the device your token is on. The one-time passwords generated and what he login server approves as tokens are based on current date and time and the serial key attached to your token.

There's a synchronize feature in the Square-Enix token app, dig through the app and find it, make sure you are connected to the internet so it can perform the task as intended.

Theres the very rare occurrence where synchronizing both game machine system time and app still won't work, in this case try turning your device off and on and restarting your machine, yeah sounds stupidly basic, but honestly how often do people reboot their phones? i only do it when theres a system update that requires it, so once every 3-6 months, which is plenty of time for some internal synchronize system to go out of wack This will usually fix the problem, and if it does not reside, you have to request a new token from the automated cancel and obtain system or talk to tech support.

[Raist]

No it wont.

Can't keep a password after a security compromise. If they got your game login, odds are they also got your email login and other things you do on your compromised machine.

In short they can impersonate you. So the current system iis working as intended, keeping your account secured. Even then the current lockdown system can be bypassed by what i i'm mentioning.

Could play this out to an extreme...they could hack into your accounts, then apply a token and thus lock you out of your account--potentially giving them free reign with well leveled/geared characters for free until you somehow manage to cancel payment for the account or otherwise convince SE of the theft and they lock it down.

So yeah.. you WANT them to temporarily suspend the account until you can get in there and secure it again.

[Gilthas]

The distinction is only a formality.
I'm paying money. I'm receiving the ability to play on any computer with the game, the security of others being unable to log in, and a small advantage. What you call it doesn't change what it is.
And I am abusing the crap out of it.

One-time passwords were around before they also gave us the free teleports.

[SarcasmMisser]

You are going to use two factor authorization if you like it or not.

If you use token it's token + password

If you don't it's IP + password

Pick your poison. Companies that deploy a modern approach to security like SE are a good thing, and people like the OP who refuse to get with the program should be inconvenienced until they do. I don't want the bar of security set at the standard of people who still live in the stone age of internet security.

[Nadirah]

Could play this out to an extreme...they could hack into your accounts, then apply a token and thus lock you out of your account--potentially giving them free reign with well leveled/geared characters for free until you somehow manage to cancel payment for the account or otherwise convince SE of the theft and they lock it down.

So yeah.. you WANT them to temporarily suspend the account until you can get in there and secure it again.

This happens in wow, who also have these tokens. The battery is good for about 5 years on average, warranty is for 3.

[Aeyis]

Nah. It's fine the way it is. If you refuse to use the OTP app/dongle to remove those (and get a free teleport bookmark), that's your choice.

Wow! A free teleport bookmark!
Must be well worth to obtain extra hassle.

No it wont.

Can't keep a password after a security compromise. If they got your game login, odds are they also got your email login and other things you do on your compromised machine.

In short they can impersonate you.

Nice thought out reply!


One problem: the confirmation mail requests your password change, meaning that if indeed they have your email and your login data:
Well, now they are offered the chance to change them! Not like it has any effect, since they already have your info.
And in the case that it isnt a hacker but yourself, then well it has no effect either, since you already have your own info.

Yes, well thought out reply! Password change makes a lot of sense. I mean, its not like a confirmation that its you who changed your isp is all they need for security, right?

[Gramul]

One-time passwords were around before they also gave us the free teleports.

But I didn't buy it then.

Stop trying to justify my actions everyone!

[Khyra]

The system time on your game machine needs to be synchronized with a world clock as well as the device your token is on. The one-time passwords generated and what he login server approves as tokens are based on current date and time and the serial key attached to your token.

There's a synchronize feature in the Square-Enix token app, dig through the app and find it, make sure you are connected to the internet so it can perform the task as intended.

My token app works fine, and I can log into the game and into the forums on any computer except one running Linux. Only an issue in the browser logging in here and only on Linux, regardless of machine time settings. I reported it once but I doubt Square cares enough to debug their web login code. But the result is that I wouldn't be able to use forums/lodestone except on my gaming machine, so I'd rather just disable the token.