Thread regarding Wells Fargo & Co. layoffs

Personal phones being required to perform job

One of my co-workers recently had their RSA token expire and had to go through the process of renewing it. When they did they were denied a hard token renewal instead the form informed them that moving forward all Bank personnel are to use their personal phone and install the RSA app on it and that is how you will get your RSA code moving forward... They have been using it ever since.

I work in Azure as well and within the last few weeks my SMS/voice option was disabled, another coworker of mine was using Google authenticator and that no longer works either.

Without publication and without broadcast the Azure MFA options were all deprecated except for one and that is the requirement to use Microsoft authenticator app. I asked my manager how the bank is legally allowed to force me to use my personal phone to install software to do my job and not offer reimbursement and my managers reply was "if you don't like it look for another job this is the way it is now".

Just wondering with everything the way it's going right now how people view the new requirements of being forced to use your personal phone to install software for business use running up your internet bill and more and not being offered reimbursement? Is there any legal concerns here?

by
| 2736 views | | 29 replies (last ) | Reply
Post ID: @OP+1srLUTkG

29 replies (most recent on top)

I just went through this and although they push hard for a soft token, you can still get a hard token. I ordered mine, came next day. I refuse to use my personal device for work and now that the company no longer pays for a business cell, they know they cannot have it both ways.

by
| | Reply
Post ID: @5okr+1srLUTkG

You can get a soft token install on your work computer. no phone required! That is one of the options available when submitting the ART request.

by
| | Reply
Post ID: @4jzz+1srLUTkG

Yup and guess what, once you install the RSA in your phone.... they will know if you step away from the computer more than 500 feet. I got a burner phone just for the RSA. Now I can leave my laptop on with a mouse mover for a few hours, while I run errands with my real phone leaving the burner right next to the laptop.

by
| | Reply
Post ID: @4zla+1srLUTkG

Last time I renewed a token, they tried to forve me into that phone version. I told them I didn't have a phone that could support it since they took away my corporate device, so I received another hard token.

by
| | Reply
Post ID: @3nzb+1srLUTkG

What personal phone?

by
| | Reply
Post ID: @2dym+1srLUTkG

A few years ago my hard token expired and was told only soft token was available going forward. As far as I know you can get the phone app or PC based. (Although I suppose a PC based token generator ain't gonna work if you're on VDI)

Bottom line here is the bean counters and the security folks are disconnected and nobody gives a f**k if you have to use personal resources to do your job.

by
| | Reply
Post ID: @1fwi+1srLUTkG

in california, there is a law that protects employees from this. that's why there are still corporate phones in ca. Anywhere else, you are not protected legally.

You can still get a hard token. When you go thru the process to order a new token, it does say that new strategy is soft tokens a couple of times but if you keep going there is nothing that stops you from ordering a hard token - and there's no extra approval needed. the "warnings" are just discouragement, but not a blocker.

by
| | Reply
Post ID: @1hsi+1srLUTkG

"you can still get hard"

Go on...

by
| | Reply
Post ID: @1zgz+1srLUTkG

Has something changed very recently? I got a hard token two weeks ago. They say soft is the “strategy going forward” but you can still get hard.

by
| | Reply
Post ID: @1gdf+1srLUTkG

@gpm+1srLUTkG

Pretty much every system I use requires a token.

by
| | Reply
Post ID: @1eeo+1srLUTkG

I got a new hard token recently. Just say you don’t have a smart phone.

by
| | Reply
Post ID: @1dfp+1srLUTkG

I literally received a new soft token this week. I wasn’t given an option and its installed on my corporate laptop. Works great. I prefer it the old soft token which was on my cell phone.

by
| | Reply
Post ID: @1pls+1srLUTkG

BWAHAHAHA!!!

by
| | Reply
Post ID: @1wiw+1srLUTkG

The knucklenutz directing folks to have soft token installed on laptops are dolts for 2 reason. #1 they no longer offer that. Phone or nada. And #2 VDI u friggin fools. FFS we’re still surrounded by id--ts even after all these layoffs.

by
| | Reply
Post ID: @1obh+1srLUTkG

They are getting rid of token on computer also. Will be all on mobile soon.

by
| | Reply
Post ID: @1bgd+1srLUTkG

Talk to your state representatives. These are the laws they allow. It’s not a wf thing.

by
| | Reply
Post ID: @1voz+1srLUTkG

@1gjr that is exactly what I did. Just call the tech line and they will simply install the RSA token on your laptop. Almost too easy.

by
| | Reply
Post ID: @1fov+1srLUTkG

just get a soft token on your laptop, that's all you need. you'll find it makes logging into things like myed so much easier.

by
| | Reply
Post ID: @1gjr+1srLUTkG

Microsoft is deciding these are the changes that are coming. Authenticator is where they are going.

by
| | Reply
Post ID: @1jff+1srLUTkG

@gpm+1srLUTkG

You need it to log into some applications, even if in office, so some people do need it to do their jobs. I have a soft token on my laptop so currently not worried about it, but I need the token for more than just working from home.

by
| | Reply
Post ID: @1yfr+1srLUTkG

Why aren't you using a soft token? I work remote, and don't use my phone for a token.

by
| | Reply
Post ID: @1xgf+1srLUTkG

They will say if you’re not comfortable with it you can work from the office 5 days a week. Be happy we are at least hybrid.

by
| | Reply
Post ID: @xli+1srLUTkG

@hsg+1srLUTkG

Nah...not illegal because it's not required to do your job.

by
| | Reply
Post ID: @bmk+1srLUTkG

Sounds like you're catching up from about 3 years ago. Here's your problem, the RSA token isn't required to do your job. It's required for you to work remote. You could come into the office 5 days a week instead.

by
| | Reply
Post ID: @gpm+1srLUTkG

What they are doing technically they're not legally allowed to, however; with inflation and companies hiring Indians over Americans the likelihood of people doing anything to go up against its slim and none because they need this job.... Just like the de&I senior leader needed the job right up until the point he jumped out the conference room window in Delaware.

by
| | Reply
Post ID: @hsg+1srLUTkG

Don't you pay for your phone service with the paycheck you make from this company? Then why are you being selfish and not giving back to the company that pays you by doing work off of your personal phone? Isn't that selfish....

by
| | Reply
Post ID: @wqy+1srLUTkG

I would rather do my work through my personal phone then the deal with their pathetic vdi infrastructure... Don't tease me let me work from McDonald's please.

by
| | Reply
Post ID: @vsn+1srLUTkG

Every manager is saying what your manager is saying... There is no way around it it is the new reality and this is the way the senior leadership has decided to go to cut cost. There are other companies out there that will give you a yubi key or device or something that will satisfy these requirements but the way it is right now here at this company you have to use your personal phone for these things whether or not if it's legal or illegal I could not say I'm not a lawyer but based on previous CEO actions with creating fake bank accounts do you really think they care about your legal aspects?

Just put it on your phone do your job and be thankful that you have a paycheck coming in.... Leave on your own terms if you wish but don't let them Force you out play the game

by
| | Reply
Post ID: @nbe+1srLUTkG

Its not that serious... I would rather my phone than a stupid token... especially when I had 20 of them to lug around to do my job back in the day.

by
| | Reply
Post ID: @vdc+1srLUTkG

Post a reply

: