‎Disable 30-day auto-logout on the app | SimpliSafe Support Home
 
scott_3b0301's profile

Wednesday, October 26th, 2022 6:54 PM

Implemented

4

Disable 30-day auto-logout on the app

​@davey_d​​​ So far so good, but only updated the app yesterday so we'll see how it goes. ​

​The app should never log the user out unless the user does it themselves. I hope you didn't fix this issue only to make it log out monthly. That's a potentially dangerous risk to the security of the user and their family. Imagine hearing a noise at your front door and you go to access the doorbell cam but you're logged out. What if that's the beginning of a home invasion (I've been there, not recommended)? Same with other functions; imaging finding you're logged out again when your safety may depend on this app? Makes no sense guys, speaking from experience here. Keep the app logged in unless the user logs out. ​

This post was created from this reply on different post

Official Response

Community Admin

 • 

5.7K Messages

2 years ago

Hi folks, 

I have some clarifying info regarding this request.

The SimpliSafe app’s login system is designed to log out the user after 30 days of inactivity. This is an industry standard best practice for keeping your accounts secure.

But it's important to note if you are using the app on a regular basis, e.g. checking the status, arming and disarming, etc., then you would be able to stay logged in indefinitely.

That is, unless you log in on a new device, log out on your own, or if there's an issue with the app (like the previously resolved issue that this post was split off from). If you are being logged out of the SimpliSafe app more frequently than you should, please let us know!

6 Messages

2 years ago

@scott_3b0301​ absolutely agreed.  The app should NEVER log out automatically, or at the very least, should be able to be logged in with FaceID quickly.  Having to log in manually during an emergency brings the potential of making a dangerous situation much worse.

1 Message

2 years ago

The problem is that the app SHOULD NEVER automatically log you out.. This is not a security measure it is a security hindrance and will end up resulting in a lawsuit.  We upgraded to the more expensive plan and it is worse.  When you hear a noise late at night or get a notification that a camera has activated and you enter the app to open the camera, you shouldn’t see a log in screen. Having to log in and wait to be sent an authentication code before you can access the app is absolutely ridiculous and unsafe.  This needs to be changed.  Or at the very least send a notification at the time the app has logged you out so that you can log back in BEFORE an emergency situation may exist.  We have had simplisafe for years at the cheaper plan and recently upgraded to the premium plan to add outdoor cameras.  We did not have this problem with the cheaper plan nor with the outdoor cameras we had previously from another company.  They did not have this “security measure” that logged us out every 30 days.   I hope Simplisafe corrects this so that we can decide if we want to stay logged in or be logged out every 30 days.

(edited)

6 Messages

@nalajama1​ yes totally agree with all of that. Either it shouldn’t log out, or logging in should be automatic with FaceID or TouchID. 

2 Messages

2 years ago

Forcing us to Sign back in, using multi factor auth, at a fixed duration on my secure smart-phone is BAD!  When I want to see what's happening on a camera and BAM - I have to go through the process of logging back in, doing multi-factor auth, (including looking up my Strong Password) takes significant time.  This is a level of security that none of my financial institutions torment me with.  PLEASE, PLEASE, PLEASE - fix this or make it an option.  

This is enough to make me change providers - you make your service totally useless every 30 days!

Note: This comment was created from a merged conversation originally titled PLEASE allow us to bypass the 30 day timeout!!!!

1 Message

2 years ago

Has any SimpliSafe employee acknowledged these sentiments? I am on the cusp of just buying a bunch of Foscam cameras, purchasing a blue iris license, and ditching the camera solution altogether. With that, making sure I never buy SimpliSafe cameras again, and telling people NOT to buy SimpliSafe cameras, at the same time offering my expertise to those people in setting up a video surveillance solution that actually makes sense.

Community Admin

 • 

71 Messages

Hi kennethsonnek,

 

We set the auto-logout as part of security best practice. But we understand your frustration and appreciate your feedback as we're always working to improve our system. 

1 Message

OK, standard reply, but WHAT ARE YOU DOING ABOUT IT???

1 Message

2 years ago

This situation is totally unacceptable.  The app for a secure smart phone should NEVER log you out.  As others have stated, this is a security hazard waiting to happen.  If this is not corrected soon, I will be switching to another system.

2 years ago

THIS IS HAPPENING TO ME AND NOW I HAVE NO CAMERAS ON MY APP. 

I GET  AN ALERT AND CLICK ON THE NOTIFICATION AND IT SAYS SET UP A NEW SYSTEM.... BUT I SPEND HOURS ON THE PHONE WITH SUPPORT AND THEY CAN SEE MY CAMERAS BUT I CANT. HOW IS THIS HELPFUL!!!!???? This is the 4th time ive been signed out. told to sign out and sign back in or delete the app and redownload. 

1 Message

2 years ago

Has this issue been resolved?

Community Admin

 • 

3.4K Messages

Hi @us3lees​, 

The 30-day expiration for the login token is still active.

2 years ago

This needs to be fixed, NOW.

1) NO expiration of client authentication.  We have the tool on the System page to disconnect clients if we so choose.  This needs to be a manual operation under OUR control, not yours.

2) MFA/2FA via the email address registered to our accounts!

    What if we a) lose our phones, or they're stolen, and b) all of our other clients have

    been shut out, and c) the excrement is hitting the spinning object, -right now-.   We won't

    have the time to contact your tech support people.

My most secure device is an encrypted linux laptop.  It's the -only- device I trust to handle

the email address I use for secure functions - yet when I try to log into my Simplisafe account, 9 times out of 10, I need to use my phone to authenticate access.  As mentioned, what if I don't have access to my phone, or it's been stolen.  Now, on my most secure device, I have zero access to my Simplisafe account.

Unacceptable.

28 Messages

2 years ago

SO...We have 4 users in our home which all access Simplisafe from their phone apps.  What we end up with is a login issue once a month with each device. 

The Kids will get logged out and have no way to enter the code since there is only one master account with one phone number and email address.

This has happened while we were on vacation.

Before SS adds MFA, they should have allowed multiple user control access, with different verification methods for each user.

Thanks!

Community Admin

 • 

3.4K Messages

Hi @mike_880898​, 

I would recommend setting up Multi-Factor Authentication for your family using each of their phone numbers. With Multi-Factor Authentication, you can register multiple phone numbers to authenticate your SimpliSafe account for use on different devices. This way, if one of your kids is trying to log into the SimpliSafe mobile app and they get logged out, a code will be sent to their phone instead of yours. We list out how you can set up Multi-Factor Authentication in our Help Center, here.

(edited)

Welcome to the SimpliSafe Community’s Product Requests and Suggestions! By posting in this section, you agree that you have read and agree to our Suggestion Submission Terms, Terms of Use, Privacy Policy, including any and all related terms and policies therein.

New to the Community? Get started by reading our Welcome Post.