Two-factor authentication (2FA) adds a second layer of security to your account. Once enabled, every sign-in requires both your password and a 6-digit code from your authenticator app.

Activate 2FA with an authenticator app

  1. Click your avatar in the top right and open Profile.
  2. Scroll to the Two-Factor Authentication section (under Security).
  3. Click Enable Two-Factor Authentication.
  4. Open an authenticator app on your phone — Google Authenticator, Authy, 1Password, Microsoft Authenticator, or any TOTP-compatible app.
  5. Scan the QR code on the page, or copy the secret key and paste it into the app.
  6. The app starts generating a new 6-digit code every 30 seconds.
  7. Enter the current 6-digit code in the verification box.
  8. Click Verify and Activate.
  9. Save the recovery codes shown on the success screen — store them somewhere safe (password manager, printed copy). These are the only way back into your account if you lose access to the authenticator app.

From now on, every sign-in prompts for a 2FA code after your password.

Use a recovery code

If you lose access to the authenticator app, sign in with your password, then choose Use a recovery code at the 2FA prompt and enter one of the codes you saved.

Deactivate 2FA

  1. Open Profile > Two-Factor Authentication.
  2. Click Deactivate Two-Factor Authentication.
  3. Confirm — 2FA is removed and future sign-ins only require your password.

Tip: Pair 2FA with a strong password and don't store both factors on the same device. If your authenticator app is on the same phone as the password manager that holds your password, you've effectively reduced to one factor if the phone is lost.

Note: If your firm enforces mandatory 2FA, the Deactivate button is hidden and you cannot remove 2FA from your account. Ask an administrator before changing the policy.