Skip to Content
ContentSecurityTwo-Factor Authentication

Two-Factor Authentication

Two-factor authentication (2FA) adds a second layer of security to your account. After entering your password, you’ll need to provide a code from your authenticator app.

Setting Up 2FA

Open Security Settings

Go to Dashboard > Settings and scroll to the Security section.

Click Enable 2FA

Click the Enable button to start the setup process.

Scan the QR Code

Open your authenticator app (Google Authenticator, Authy, 1Password, etc.) and scan the QR code displayed on screen.

If you can’t scan the QR code, click Manual entry to see the secret key and enter it into your app manually.

Enter the Verification Code

Enter the 6-digit code from your authenticator app to verify the setup.

Save Your Backup Codes

After verification, you’ll receive 10 backup codes. Each code is 8 characters and can only be used once.

Save your backup codes in a safe place. They are shown only once and cannot be retrieved later. You’ll need them if you lose access to your authenticator app.

Signing In with 2FA

  1. Enter your email and password as usual
  2. You’ll be prompted for a verification code
  3. Open your authenticator app and enter the current 6-digit code
  4. Optionally check Remember this device for 30 days to skip 2FA on this device

Backup Codes

Backup codes let you sign in when you don’t have access to your authenticator app.

  • You receive 10 codes when you first set up 2FA
  • Each code can only be used once
  • After using a code, it’s permanently consumed
  • You can see how many codes remain in Settings > Security

Regenerating Backup Codes

If you’ve used most of your backup codes or need fresh ones:

  1. Go to Dashboard > Settings > Security
  2. Click Regenerate Backup Codes
  3. Enter your password to confirm
  4. Save the new codes — all previous codes are invalidated

Disabling 2FA

  1. Go to Dashboard > Settings > Security
  2. Click Disable 2FA
  3. Enter your password to confirm
  4. 2FA is removed immediately

If you signed up with a social account (Google, GitHub, etc.) and don’t have a password, you’ll need to provide a valid TOTP code instead of a password to disable 2FA.

Team 2FA Requirement

Team Owners and Admins can require all team members to enable 2FA:

  1. Go to Dashboard > Team
  2. Enable Require 2FA for all members

When enabled:

  • Existing members are prompted to set up 2FA on their next login
  • New members must set up 2FA before accessing the team
  • Members cannot opt out while the requirement is active

See Roles & Permissions for who can manage this setting.

2FA Status

Check your 2FA status at any time in Dashboard > Settings > Security:

  • Whether 2FA is enabled
  • How many backup codes remain
  • Whether your account or team requires 2FA

Tips

  1. Use a reputable authenticator app — Google Authenticator, Authy, 1Password, or Bitwarden all work
  2. Save backup codes offline — Print them or store in a password manager, not just on your phone
  3. Enable trusted devices — Use “Remember this device” on your regular devices to reduce friction
  4. Regenerate codes periodically — If you’ve used several backup codes, regenerate a fresh set
Last updated on
Trusted DevicesTeam