It appears Apple has started rolling out support for two-factor authentication on its iCloud.com website. The feature initially rolled out to the Apple ID management website in the United States and then in several other countries soon after.
Under the new setup on iCloud.com, users can only access Find My iPhone without verifying their identities. Mail, Contacts, and other “apps” require you to enter a passcode that can be texted to any phone number or sent to the Find My iPhone app on properly configured devices.
The Find My iPhone web app is unlocked by default as a security measure to ensure that if users have lost their phones, they’re still able to get them back, since requring you to use your missing phone to login in order to locate it would be counter-intuitive. Users have the option of setting trusted computers to automatically remember their two-factor login so they don’t need to repeat the process each time they login.
It seems the feature is rolling out to many users today, while others will have towait to get the full benefits of this additional security measure.
Update: It seems the two-factor option has stopped working now. It’s possible Apple accidentally launched the feature earlier than expected for some users.