Aegis Authenticator

PCMag editors select and review products independently. If you buy through affiliate links, we may earn commissions, which help support our testing.

Aegis Authenticator is an app for multi-factor authentication that offers a lot of different ways to secure and speed up your workflow. It doesn't report any data collection on Android phones, and it is easy to import and export tokens to and from other authentication apps. Most impressively, Aegis doesn't reveal your tokens when you open the app. The codes are encrypted until you unlock them using a password or biometrics, making the app ultra-secure. The only real drawback is limited availability—the app only runs on Android devices, so there's no support for iPhone or other Apple products. Accordingly, Aegis Authenticator is an Editors' Choice winner for Android devices. 2FAS is our other Editors' Choice in the category because it's private, extremely easy to use, works on Android and iOS devices, and has browser extensions for desktop authentication.

Getting Started With Aegis Authenticator

Aegis is only for Android devices. No desktop, iOS, or wearable versions are available. The only app I've reviewed with watchOS compatibility is Authy. I tested Aegis using a Samsung Galaxy A71 5G.

After installing it, the app asked me to create a password or use biometrics, such as a face or fingerprint scan, to unlock my vault. This extra layer of protection can prevent your vault from being accessed without your consent. After setting a password, navigate to the Settings menu and set up a separate password for decrypting backups and exports. That way, even if someone has the password to your token vault, they still can't access your data.

Signup Requirements

The app does not offer options to create or sign up for an account, which is ideal. Generating tokens isn't a data-hungry process, so I like apps in this category that don't require email addresses, phone numbers, or other information.

Data Collection Policies

According to the Google Play listing for Aegis Authenticator, the app does not collect any data. The app's privacy policy is just three sentences long and states that it only requires camera access to scan QR codes, which appears to be accurate. It's a refreshing change, as it's not unusual for authenticator apps to collect location or diagnostic data, as I've seen from Microsoft Authenticator. Similarly, Google Authenticator requests data from eight different app categories, including your Contacts list, photos, and videos.

Hands On With Aegis Authenticator

The app's default interface has a black, gray, and white layout with easy-to-navigate menus. Screenshots are disabled by default, a helpful feature I've also seen in 2FAS. As you peruse the menus, the Appearance section allows you to adjust the color scheme. I changed mine to match the test phone's background and color settings.

In the Behavior section of the Settings menu, you can change how you interact with the tokens the app generates. To test this, I activated a setting to immediately minimize the app after copying a token. That way the numbers are visible for the least amount of time, shoulder surfers don't get a chance to read your codes, and you don't have to remember to close the app window on your phone. The setting worked well throughout testing. You can also customize the order of your tokens from the app's dashboard, and long-pressing on a token allows you to edit or delete its name.

Creating a new token is as easy as scanning a QR code or image, or manually entering a code to connect the app with your online account. I enabled multi-factor authentication on my test social media account and successfully logged in using the code generated by Aegis. To view your login history on the app, visit the Security menu and view the Audit Log.

I like that you can quickly delete your tokens if they're in danger. A setting in the vault allows you to use Ripple, a panic button trigger from the Guardian Project, to delete your token vault instantly.

Backing Up Account Info

With Aegis Authenticator, you can create an auto-backup schedule or set reminders to save your data to Android Cloud or external storage. It's a good idea to back up your data so you can still log in to your accounts with a new phone if your old one is lost or stolen. Visit the Settings menu to explore those options.

Token Exporting and Importing

In an unusual but welcome move, Aegis can import token lists saved by other apps as plain text files. It can process special files from 17 competing apps, including 2FAS, Authy, Battle.net Authenticator, and Steam. You can also import tokens directly from another app if you have it installed and are willing to give Aegis Authenticator root access, which involves a bit of trust. I recommend sticking with the file import option, which worked well during my tests.

You can also export your token list to use it in another app. I successfully imported the Aegis list to Google Authenticator, for example. I also like that you can long-press on a token in your vault and generate a QR code to transfer the individual account token to a different authenticator app. Only 2FAS allows for easy exports and imports like Aegis, the rest of the apps I've reviewed either don't allow token transfers, or the process is import-only.

Verdict: Aegis Authenticator Is Excellent for Android

Aegis Authenticator shows a real commitment to data privacy. It doesn't collect data from the people who use the app, and it offers extra layers of token protection by urging you to keep your data behind a biometric lock or a password. I'm really impressed with the app's appearance and behavior customization settings, too. I wish there were apps for iOS devices and wearables, but that doesn't prevent Aegis from earning an Editors' Choice award for Android devices. 2FAS is another Editors' Choice winner because it works on Android and iOS and provides desktop browser extensions.