My company stopped allowing OTP and required Microsoft Authenticator on personal phones. I was one of the few to refuse, eventually they gave me a Fido key. While I also use a less Google version of Android, I didn’t talk about that when it was happened, just the principal that this is my phone, not the companies.
I have been doing that too for years: I tolerate Gmail for my work account because I like having updates on my phone, and the 2FA go in my own Bitwarden account. I refuse anything else.
I told them my os is non standard, Graphene, and if they need anything more than 2fa codes, it’d need to be on one of their devices.
My company stopped allowing OTP and required Microsoft Authenticator on personal phones. I was one of the few to refuse, eventually they gave me a Fido key. While I also use a less Google version of Android, I didn’t talk about that when it was happened, just the principal that this is my phone, not the companies.
I have been doing that too for years: I tolerate Gmail for my work account because I like having updates on my phone, and the 2FA go in my own Bitwarden account. I refuse anything else.