Setting Up Two-Factor Authentication

Two-factor authentication (2FA) adds an extra layer of security to your account. Even if someone learns your password, they can't access your account without also having your phone.

Why Use Two-Factor Authentication?

Think of 2FA like having two locks on your front door. Your password is the first lock—it's good protection, but one lock can be picked. Two-factor authentication is the second lock, and it changes every 30 seconds. This makes your account much harder to break into.

What You'll Need

Before starting, download an authenticator app on your phone:

• Google Authenticator (free, iOS and Android)
• Authy (free, iOS and Android)
• 1Password (paid, includes authenticator)
• Microsoft Authenticator (free, iOS and Android)

Any authenticator app that supports TOTP (time-based one-time passwords) will work.

Setting Up 2FA

Step 1: Go to Security Settings

1. Log in to your account
2. Click your profile icon in the top right
3. Select Account Settings
4. Click the Security tab

Step 2: Enable Two-Factor Authentication

1. Find the Two-Factor Authentication section
2. Click Enable 2FA
3. You'll see a QR code on screen

Step 3: Scan the QR Code

1. Open your authenticator app
2. Look for an option to add a new account (usually a + button)
3. Choose Scan QR Code
4. Point your phone's camera at the QR code on screen
5. Your authenticator will add the account automatically

Step 4: Enter the Verification Code

1. Your authenticator app now shows a 6-digit code
2. Enter this code in the verification field on screen
3. Click Verify and Enable

That's it! Your account is now protected with two-factor authentication.

Saving Your Backup Codes

After enabling 2FA, you'll receive backup codes. These are critically important!

What Are Backup Codes?

Backup codes let you log in if you lose access to your authenticator app (lost phone, new device, etc.). Each code can only be used once.

How to Save Them

1. After enabling 2FA, click View Backup Codes
2. You'll see 10 one-time codes
3. Save them somewhere safe:
   • Print them and store in a secure location
   • Save in a password manager
   • Write them down and keep with important documents
4. Never share these codes with anyone

Logging In with 2FA

Once 2FA is enabled, here's how login works:

1. Enter your email and password as usual
2. You'll see a prompt for your 2FA code
3. Open your authenticator app
4. Enter the 6-digit code (it changes every 30 seconds)
5. Click Verify

Tip: The code refreshes every 30 seconds. If your code is about to expire, wait for a new one.

If You Lose Your Phone

Don't panic! You have options:

Use a Backup Code

1. On the 2FA verification screen, click Use backup code
2. Enter one of your saved backup codes
3. You'll be logged in
4. Set up 2FA again with your new device

Contact Support

If you don't have backup codes:

1. Contact support with proof of identity
2. We'll verify your account ownership
3. We can disable 2FA to restore access
4. Re-enable 2FA immediately after

Disabling 2FA

If you need to turn off two-factor authentication:

1. Go to Account Settings > Security
2. Find Two-Factor Authentication
3. Click Disable 2FA
4. Enter your password to confirm
5. 2FA is now disabled

Note: We strongly recommend keeping 2FA enabled for account security.

Troubleshooting

"Code is invalid"

• Check your phone's time is set automatically
• Wait for the next code if the current one is about to expire
• Make sure you're entering the code for the correct account

Authenticator not showing account

• Re-scan the QR code
• Manually enter the setup key (shown below QR code)
• Check you're in the correct authenticator app

Lost backup codes

1. Log in with your authenticator app
2. Go to Security settings
3. Generate new backup codes
4. Save them in a safe place