Two-factor authentication (2FA) — also called two-step verification — adds a second check when you sign in. Even if someone steals your password, they still can't get in without the second factor. It takes about five minutes to set up and can save you enormous grief.
How 2FA Works
When you sign in with your password, the service also asks for a one-time code. That code arrives via text message, an authenticator app, or a prompt on a trusted device. You enter it, and you're in. Without it, the login is blocked.
Microsoft Account
- Sign in at account.microsoft.com and go to Security > Advanced security options.
- Under Two-step verification, click Turn on.
- Follow the setup wizard. You can use the Microsoft Authenticator app (recommended), an email code, or a phone number.
Google Account
- Go to myaccount.google.com and click Security in the left panel.
- Under How you sign in to Google, click 2-Step Verification, then click Get started.
- Choose your second factor: Google prompts (easiest), an authenticator app, a text/call, or a hardware key.
Apple ID
- On an iPhone or iPad, go to Settings > [your name] > Sign-In & Security > Two-Factor Authentication.
- On a Mac, go to System Settings > [your name] > Sign-In & Security.
- Tap or click Turn On Two-Factor Authentication and follow the prompts.
- Open Settings & privacy > Settings > Accounts Centre > Password and security > Two-factor authentication.
- Select the account and choose your method: authentication app, text message, or a hardware security key.
Which Method Is Best?
An authenticator app (such as Microsoft Authenticator or Google Authenticator) is generally more secure than SMS codes, because text messages can be intercepted. But even SMS-based 2FA is far better than no 2FA at all. Pick whatever method you'll actually use consistently.
Need help choosing an authenticator app or troubleshooting setup? Ask us.