Mfa is all nice and smells good until you lose your fingerprints and can't even biometrics-unlock your phone, let alone mfa-auth okta or ms authenticator app.

How the f do I explain to the client that I didn't do anything today..

You were doing security tests ;P

Also, so done with MFA, very tempted to make a browser extension that just autofills them (I'm fine with the hey we'll email you a code since this is a new device)

@BordedDev wow, good idea.

I hate mfa too, not scared to be hacked at all, but losing my access because my phone disappeared, for sure. I see mfa as a risk.

@whimsical Yup exactly the same, I'm more likely to lose the phone than I am to have someone walk in and take the pc

MFA would only have been nice as an "any 2 of N" deal. For small values of N larger than 2, this provides both better accessibility and better security. Implementors just decided to piss in the pot by turning it into a "password + any 1 of N" and only providing second factor options that aren't substantially different in nature, if there's a choice at all.