digital
How to Set Up Two-Factor Authentication (2FA)
A beginner-friendly walkthrough for securing accounts with 2FA.
digital safety2FA
DIGITAL SAFETY
Two-Factor Authentication (2FA) Setup Guide
Before You Start
Two-factor authentication (2FA) adds an extra step when you sign in. This can make it harder for someone else to access accounts, even if they know your password.
- Decide which device you will use for codes (phone, tablet, or separate device).
- Check that you can access the email address linked to your account.
- Have a pen or secure notes app ready to store backup codes.
Many accounts let you use more than one 2FA method at the same time (for example, an app plus backup codes). Using more than one option can make account recovery easier.
Option 1: Set Up App-Based 2FA
App-based 2FA uses an authenticator app to generate time-based codes.
Step 1: Choose and install an authenticator app
- Common examples include “Google Authenticator”, “Microsoft Authenticator”, and “Authy”.
- Install from your device’s official app store.
- Open the app once to confirm it works.
Step 2: Find 2FA settings on your account
- Sign in to the account you want to protect.
- Go to:
- “Security” or “Account security”, or
- “Password & security” or “Login & security”.
- Look for:
- “Two-factor authentication (2FA)”
- “Two-step verification”
- “Login verification”
Step 3: Link the authenticator app
- Select the option for “Authenticator app” or “Authentication app”.
- The site will usually show a QR code and sometimes a text “setup key”.
- On your authenticator app:
- Choose “Add account” or “+”.
- Scan the QR code on your screen, or
- Enter the setup key manually if scanning is not possible.
Step 4: Confirm and save
- Your authenticator app will show a 6-digit (or similar) code that changes every 30 seconds.
- Enter the code into the website when prompted to complete setup.
- Check for any “Save” or “Turn on” 2FA button and select it.
Option 2: Set Up SMS 2FA
SMS 2FA sends a code by text message to a mobile number.
Step 1: Prepare a phone number
- Decide which mobile number to use.
- Check that you can reliably receive text messages on that number.
Step 2: Enable SMS 2FA in account settings
- Sign in to the account.
- Go to the “Security” or “Two-factor authentication” section.
- Select “Text message (SMS)” or similar.
- Enter the mobile number you plan to use.
Step 3: Verify your phone number
- The service will send a code by text message.
- Check your phone for the incoming SMS.
- Type the code into the website when asked.
- Confirm or save to finish activation.
If possible, consider having both an authenticator app and SMS 2FA available. If one method stops working, the other may still let you in.
Backup Codes: Setup and Storage
Backup codes are one-time use codes that can help you sign in when you cannot access your usual 2FA method.
Step 1: Generate backup codes
- In the same “Security” or “Two-factor authentication” section, look for:
- “Backup codes”
- “Recovery codes”
- “Printable codes”
- Select the option to create or generate new backup codes.
- The site will display a list of codes, often 8–12 separate numbers or strings.
Step 2: Save backup codes securely
- Options for storing codes:
- Write them on paper and store in a safe, consistent location.
- Store them in a password manager that you control.
- Save as a text file in a secure, encrypted location if available.
- Avoid storing codes in easily accessible places (for example, open notes on a shared device).
- Label them clearly with the account name and date generated.
Step 3: Use backup codes when needed
- On the sign-in screen, after entering your password, look for:
- “Use a backup code”
- “Try another way”
- “Use recovery code”
- Enter one code from your saved list.
- Mark that code as used, if your list does not automatically update.
Recovery Steps if You Lose 2FA Access
If you cannot access your usual 2FA device (for example, phone lost or app uninstalled), there are several options to try.
Step 1: Try alternative sign-in options
- Look for a link such as:
- “Can’t access your 2-step verification?”
- “Try another way”
- “More options”
- Use any of these if available:
- Backup codes you stored earlier.
- Another 2FA method on the account (app, SMS, security key).
- A trusted device that is still signed in.
Step 2: Use account recovery tools
- Go to the account’s sign-in page and choose “Forgot password?” or the recovery link.
- Follow the steps, which may include:
- Confirming access to your email address.
- Answering security questions (if previously set up).
- Providing recent account details (for some services).
- Once back in, review and update:
- Your 2FA method(s).
- Your backup codes (generate new ones if allowed).
- Any old or unused phone numbers on the account.
Step 3: Review your devices and sessions
- In account settings, look for:
- “Devices” or “Your devices”
- “Active sessions” or “Where you’re signed in”
- Sign out of any devices you do not recognize or no longer use.
- Change your password and store it in a secure place.
Step 4: Document your setup for future recovery
- Keep a simple record (for example, in a secure note or password manager) of:
- Which accounts have 2FA turned on.
- Which 2FA method each account uses (app, SMS, key).
- Where backup codes are stored.
- Update this record if you change phones, apps, or numbers.
Some people review their 2FA setup regularly along with other digital safety steps. Additional tools and professional supports can also be found through resources listed at DV.Support.
Quick Checklist
- [ ] Turn on 2FA (app, SMS, or both) for key accounts such as email, banking, and cloud storage.
- [ ] Install and test an authenticator app, if you choose to use one.
- [ ] Generate backup codes for each account that offers them.
- [ ] Store backup codes in at least one secure, accessible location.
- [ ] Note which phone numbers and devices are connected to your accounts.
- [ ] Review your 2FA settings after changing phones or phone numbers.