[easton]

I set mine to four attempts, figuring that if I screw my passcode up four times it takes me like an hour to restore the device state from backup/MDM but if someone thought they had guesses at my passcode they'd lose that much quicker. Everything I can't "live without" that I use my phone for day to day is in GSuite/Spotify/iCloud/1Password anyway.

(I now really pay attention when typing my passcode, which doesn't happen often because of Touch ID)

[jimmydorry]

You don't use phone TOTP? Google Authenticator, etc.

[T3OU-736]

Those, too, can be backed up, though for a while, at least on Android, Google Authenticator could not be (unless rooted, and even then, a nontrivial undertaking). This, AFAIK, has changed.

[astrange]

On iOS it could not be backed up or transferred to another device. I think it can now, but I moved to another app forever ago because of that.

[easton]

I use Authy and 1Password for that.

[1cvmask]

You can also use saas pass as either or both as an authenticator and password manager.

Worked on the passwordless 2FA part of it