Two-Factor Authentication
Two-factor authentication (2FA) adds an extra layer of security by requiring a second verification step when logging in. Protect your account even if your password is compromised.
Supported Methods
Authenticator App
RecommendedUse Google Authenticator, Authy, 1Password, or any TOTP-compatible app to generate codes.
SMS Codes
Receive verification codes via text message. Less secure than authenticator apps.
Setting Up 2FA
- 1
Go to Security Settings
Navigate to Profile → Security → Two-Factor Authentication
- 2
Choose Your Method
Select authenticator app (recommended) or SMS
- 3
Scan QR Code
Open your authenticator app and scan the displayed QR code
- 4
Enter Verification Code
Type the 6-digit code from your app to confirm setup
- 5
Save Recovery Codes
Download or copy your backup codes — store them securely!
Recovery Codes
Recovery codes let you access your account if you lose your authenticator device. Each code can only be used once.
Best Practices
- • Store in a password manager
- • Keep a printed copy in a safe
- • Never share with anyone
If You Lose Them
- • Log in and regenerate new codes
- • Contact support if locked out
- • Identity verification required
Org-Wide 2FA Enforcement
Administrators can require 2FA for all team members at Settings → Security → 2FA Policy.
Optional
Users choose whether to enable
Encouraged
Prompted on login until enabled
Required
Must set up to access account