Two-Factor Authentication
Add a second layer of security so a password alone isn't enough to sign in.
Two-factor authentication (2FA) asks for a short, time-based code from an authenticator app each time you sign in. You'll find it on the Security page.
Turning on 2FA
- Click Enable 2FA.
- Scan the QR code with an authenticator app (Google Authenticator, 1Password, Authy, etc.). Can't scan? Choose “or, enter the code manually” and copy the setup key.
- Enter the 6-digit code from your app and click Confirm.
Recovery codes
After enabling 2FA, save your recovery codes — they let you back in if you lose your phone.
- Click View Recovery Codes to reveal them, then store them in a password manager.
- Each code works once and disappears after use.
- Running low? Click Regenerate Codes for a fresh set.
Turning off 2FA
Click Disable 2FA. As the warning explains, this “removes the extra login check… weakening security” — only do it temporarily and re-enable soon.
Related
- Logging In (2FA challenge at sign-in)
- Active Sessions