I just wanted to post that, even if you don't want to use the 2-factor authentication, the application specific passwords is a great idea to use. What makes it nice is that your obi device has a different password to use than your primary password. This is nice because if you ever change your password (either periodically, or because you think it may have been compromised), your obi device is using a different password and will not need to be reprogrammed. It's one less thing to worry about.
If you want to use the application specific passwords but not 2-factor authentication, what you have to do is turn on 2-factor authentication, setup the application specific passwords, and then turn off 2-factor authentication. Your application specific passwords will continue to function.