2-factor authentication (2-FA) helps secure your account by using an authentication token in addition to your password. The authentication token in this case is a time-based one-time password (TOTP), which is a password that can only be used once and that expires if it is not used within a specified length of time. The TOTP is generated by the system and sent to the user by way of a text message to a mobile phone. YubiKeys should also be compatible. The user then enters the TOTP at login to confirm his or her identity.
This procedure describes how to set up 2-factor authentication for your account.
Setting up 2-Factor Authentication
Sign in to your account.
Click your name to open the drop-down menu and select "Manage Account".
On the Account Management Screen, click "Additional Settings"
In the Additional Settings tab, click the drop-down menu under "2-factor Auth Reset Preference" and make your selection.
International customers can only use a secondary email address for resets. US customers can also select phone or us mail.
Note: "2-Factor Auth Email" is a separate contact type available to set an email address specifically for confirming two-factor authentication resets. This is an additional layer of security in case your main email address is compromised.
Enter a 2-FA reset passphrase if you want one. This is a way of confirming your identity if you ever need to reset your 2-factor authorization. If you set a passphrase, you will need to give this to us when we contact you for the reset.
Note: We recommend a reset passphrase as an additional layer of protection against social engineering.
Go to the "Authentication" tab.
In the Authentication tab, check "Enable Two-Factor Authentication" then follow the revealed instructions.
Resetting your 2-FA
You may wish to reset your 2-FA for various reasons (a lost phone, for example). Contact us to begin the process. We'll use the confirmation method we have on file for you (along with your reset passphrase, if you have one) to confirm the reset.