Two-step verification (also called two-factor authentication, or 2FA) means that even if someone learns your password, they cannot access your email without a second confirmation — usually a code sent to your phone or generated by an app. Enabling it takes about five minutes and dramatically improves your account security.

Before You Start

Make sure you have access to your phone. You will use it to receive verification codes. Also make sure your account recovery options (a backup phone number or recovery email) are up to date — this is important if you ever lose access to your main phone.

Gmail / Google Account

  1. Go to myaccount.google.com.
  2. Under How you sign in to Google, click 2-Step Verification.
  3. Click Get started and follow the prompts.
  4. Google will first try to use a Google prompt on your phone (a pop-up asking "Is this you trying to sign in?"). You can also add a backup option such as an authenticator app or SMS code.

Microsoft / Outlook.com Accounts

  1. Go to account.microsoft.com and sign in.
  2. Click Security > Advanced security options.
  3. Under Two-step verification, click Turn on.
  4. Follow the setup wizard. Microsoft supports the Microsoft Authenticator app, SMS, email, and hardware keys.

Yahoo Mail

  1. Go to account.yahoo.com/security.
  2. Click Two-step verification and turn it on.
  3. Choose SMS, an authenticator app, or the Yahoo Mail app itself as your second factor.

Apple ID (for iCloud Mail)

  1. Go to appleid.apple.com or open Settings > [Your Name] > Sign-In & Security on iPhone.
  2. Select Turn On Two-Factor Authentication and follow the steps.

A Word About Third-Party Email Apps

When you enable 2FA, third-party email apps (like Outlook for Gmail, or Apple Mail for Yahoo) may stop working with your regular password. You will need to generate an App Password from your account security settings and use that in the app instead.

Need help with a specific step? Ask us.