Set up two-factor authentication
Two-factor authentication (2FA) adds a second step to your sign in. Even if someone has your password, they can’t get into your account without the 6-digit code from your authenticator app.
What you’ll need
An authenticator app on your phone. Any of these work:
- 1Password
- Authy
- Google Authenticator
If you already use one for other accounts, you can use the same one here.
Turn on 2FA for your account
- Once signed in, click Settings in the sidebar.
- Scroll to or click the Two-factor authentication tile.
- Click to start setup.
- Open your authenticator app and scan the QR code on screen, or enter the secret key manually if your app doesn’t support scanning.
- Your authenticator will start showing a 6-digit code that refreshes every 30 seconds.
- Type the current 6-digit code into the platform and confirm.
- The platform will show 10 backup codes. Save them somewhere safe. Each code works once and is only used if you lose access to your authenticator. Click Copy all codes if you’d like to paste them into your password manager.
You’re now set up. From the next sign in onwards, you’ll be asked for a fresh 6-digit code after your password.
Using your backup codes
Backup codes are your fallback if you lose your phone or change devices. When prompted for your 6-digit code on sign in, enter a backup code instead. Each code works exactly once. We recommend regenerating them and storing the new set if you’ve used a few.
If you lose your authenticator and your backup codes
Contact your HR admin. They can reset your 2FA so you can set it up again on a new device. For security, the platform doesn’t let you bypass 2FA self-service if both your authenticator and backup codes are lost.
Turning 2FA off
You can turn 2FA off from the same Two-factor authentication card in Settings. We don’t recommend it: 2FA is the single biggest improvement you can make to your account security.