Engineering Manager at Dropbox here. Sorry for the confusion! This is an error on that page, presumably some miscommunication between groups at Dropbox. 2FA continues to be an available feature for all Dropbox users. The only difference between plans is that team plans allow administrators to require 2FA for all members of the team. That page will get updated soon to explain that feature properly.
Just to close the loop here, we’ve updated the page to include a checkmark for 2FA in the Pro column too. Again, all account types can use 2FA (and we recommend that they do!), and teams can additionally require 2FA for all their members.
I'm sure Dropbox is going to get a lot of flak for this. 2FA based on the provider that they use may not have been cheap. Authy is $0.09 an auth, if you integrate with Twilio, you get SMS charges that vary on price based on country / provider.
The easiest/cheapest solution is to roll your own TOTP and build an app. This is useful for web, but may be pointless on mobile (if the mobile device is unlocked, then you have access to the TOTP app or SMS).
Business people probably looked at the cost per user and couldn't offer it at a lower rate.
You wouldn't need to roll your own app. Just use the Microsoft Authenticator app or the Google Authenticator app, they're the same thing and don't require a direct connection to the user account. Lots of articles on the net on how to accomplish this kind of thing for $0 in extra services.
This is sad news. While they've had their issues, I've always found dropbox to be one of the more responsible and reliable tech companies. Supplying 2fa for only paid users almost seems like they're taking hostages - "Pay us more or your account will be less secure" doesn't sound like a company whose services I would want to be using. Shame.
Not seeing anything about this. When I clicked the link I got pushed to a re-subscribe page since I previously signed up. Opening in Incognito also doesn't show anything about 2FA.
EDIT: Screenshots provided below now. They already rolled the page back.
The paid "pro" plan has no 2FA. "standard" does, but is a few extra dollars a month.
Beside the poorly named accounts, the idea of paying for security is a good one, but not when it affects the customer experience of securing their own passwords. Security in the infrastructure is an option. Optionally securing my account using 2FA is not.
That's the kicker to me as well. It suggests that Dropbox doesn't appreciate their self-employed customers.
That and showing prices "per month" on the billed annually plan just suggests deceit and greed. All of this confusion for an extra ~$25 per year per user.
[+] [-] smarx|9 years ago|reply
See https://www.dropbox.com/help/363 for more information.
[+] [-] smarx|9 years ago|reply
See the updated page here: https://www.dropbox.com/plans?trigger=nr.
[+] [-] toomuchtodo|9 years ago|reply
Control-F "API access for data transport”
> Transfer data from your existing solutions with 25,000 included API calls per month. For additional data transport needs, contact our sales team.
Absent for individual accounts.
[+] [-] sparky_|9 years ago|reply
[+] [-] sparky_|9 years ago|reply
[+] [-] omgitstom|9 years ago|reply
The easiest/cheapest solution is to roll your own TOTP and build an app. This is useful for web, but may be pointless on mobile (if the mobile device is unlocked, then you have access to the TOTP app or SMS).
Business people probably looked at the cost per user and couldn't offer it at a lower rate.
[+] [-] alexkavon|9 years ago|reply
[+] [-] 9NRtKyP4|9 years ago|reply
[+] [-] hellofunk|9 years ago|reply
[+] [-] hellofunk|9 years ago|reply
[+] [-] Mithaldu|9 years ago|reply
E: Wait, WHAT IN THE FUCK?
2FA is in the team tier, so it's a minimum of 50$ to get 2FA.
[+] [-] unknown|9 years ago|reply
[deleted]
[+] [-] bmon|9 years ago|reply
[+] [-] unknown|9 years ago|reply
[deleted]
[+] [-] robbiet480|9 years ago|reply
EDIT: Screenshots provided below now. They already rolled the page back.
[+] [-] kordless|9 years ago|reply
The paid "pro" plan has no 2FA. "standard" does, but is a few extra dollars a month.
Beside the poorly named accounts, the idea of paying for security is a good one, but not when it affects the customer experience of securing their own passwords. Security in the infrastructure is an option. Optionally securing my account using 2FA is not.
Dropbox, you are being dorks.
[+] [-] JonRB|9 years ago|reply
[+] [-] ac29|9 years ago|reply
[+] [-] unknown|9 years ago|reply
[deleted]
[+] [-] nickm12|9 years ago|reply
[+] [-] keehun|9 years ago|reply
[+] [-] RickS|9 years ago|reply
[+] [-] drdaeman|9 years ago|reply
Sorry, it's in Russian (and I'm too lazy to change browser language perfs), but you can find "2FA" there, the abbreviation was left untranslated.
[+] [-] bpaluzzi|9 years ago|reply
[+] [-] thomasdub|9 years ago|reply
[+] [-] omgitstom|9 years ago|reply
[+] [-] bpaluzzi|9 years ago|reply
[+] [-] juice_bus|9 years ago|reply
[+] [-] schnevets|9 years ago|reply
That and showing prices "per month" on the billed annually plan just suggests deceit and greed. All of this confusion for an extra ~$25 per year per user.
[+] [-] alexkavon|9 years ago|reply
[+] [-] antoineleclair|9 years ago|reply