I've had multiple users complain that when they tried to do 2FA validation Google forced them to use one of Google's app based (YouTube, GMail, etc) verification methods and blocked all other methods (email, text), then glitched and would not allow verification via the apps even after closing/reopening apps and clicking Resend for codes. I just sat with a user and went through this glitchy mess firsthand. I told them I'd disable the Google Apps based 2FA since it can't be counted on to work reliably, but now that I go to the admin page it doesn't look like Google will allow this to be disabled. Is there any way to block their forcing users to use the questionable Google Apps method and to only allow traditional/reliable methods?
These particular users have been pretty pissed (rightfully so) when not allowed to log in to their legitimate accounts at important points, to the point where one is pushing for us to get off Google altogether and go to Office365, which would be a major pain. Hard for me to argue though if Google can't guarantee reliable 2FA options. I guess turning off 2FA is a workaround, but at that point even I'd prefer to go to Office365. Any suggestions on how to turn off the Google Apps based method?
