You are probably overwhelmed with all the new terms and definitions you are exposed to when starting your adventure with Two-Factor Authentication. Here is a glossary of the most commonly used and most easily confused terms:
Two-Factor Authentication (also known as Two-Factor Authentication or 2FA) is a security process that is usually launched when you sign in to your account from a different device for the first time. 2FA is optional and you can enable it for various services (e.g. Facebook). After you enable 2FA for your account, your identity will be confirmed in two independent sign-in steps every time you sign in from an untrusted device. The first step is to provide the password for your account. The second step is to enter the verification code (also called ‘token’) which can be generated by an app (such as 2FAS Authenticator) or sent to your phone number as SMS (depends on your settings). Because your password alone is no longer enough to access your account, Two-Factor Authentication dramatically improves the security of your accounts (e.g. your Facebook account) and all the personal information you store on your accounts. Even if someone takes over your password and wants to sign in to your account from a different device, they still need a code that allows access. With Two-Factor Authentication, only you can access your account on your trusted device. 2FAS Authenticator is an application that can generate verification codes for your accounts once you enable the 2FA Authentication for this particular account / service.
Sometimes just a password for your Facebook or Instagram account isn’t enough to protect your sensitive info. To improve security, you can enable 2FA Authentication for your accounts and services. Two-Factor Authentication is a 2 steps security process launched when you sign in to your account from a different device for the first time. After you enable this feature, the service will ask you what you would like to choose as the second step of your verification. You can choose to use an application that generates one-time codes/tokens for your accounts, such as 2FAS Authenticator App. 2FAS App generates codes offline and changes them every 30 seconds. That way, even if a hacker has your password and tries to log in to your account from a different device, he still has to crack your one-time authorization code.
You can easily enable 2FA by using 2FAS Authentication App for the following services: Facebook, Gmail, Instagram, Twitter, Dropbox, Amazon, LUNO, Epic Games, PayPal, Rockstar, Snapchat and many others.
We have made short video tutorials to walk you through the configuration of 2FAS App for each of these services. Please watch the relevant video tutorial here: https://2fas.com/tutorial/.
Once you enable 2FA for a particular service, 2FAS App will be generating one-time authorization codes on your phone. You will be asked to enter a code every time you log in to this service from a new device. You may also want to use our 2FAS Backup feature and prevent account lockouts in case you lose or damage your phone. Read more about it in question 15.
So, you decided to enable Two-Factor Authentication on your service (e.g. Facebook account) and use the 2FAS App for it. When you enable Two-Factor Authentication, only you can access your account on your trusted devices. If a hacker has your password and tries to log in to your account from a different device, he still has to crack your one-time token generated by 2FAS App installed on your phone. Let’s say you lose your phone and have no access to your one-time tokens and you can’t use a trusted device. This situation puts you in a position of ‘a hacker’: you have the password but you don’t have the one-time token and you are logging in from an untrusted device. You won’t be able to log into your own accounts. This is what you can do to mitigate this risk:
You can disable the Two-Factor Authentication in your service’s account settings (e.g. Facebook account settings). When you disable this function for your account, and the account will no longer prompt you to enter the one-time token when logging in from an unauthorized device. You can then safely remove this service from 2FAS App.
It is important that you disable the Two-Factor Authentication for your account before you delete the service from your 2FAS App. If you first delete the service from 2FAS App, the service will still demand the one-time tokens which you will no longer have and you won’t be able to log in to your account.
2FAS Authenticator app works based on codes (tokens) rather than a phone number. If your Two-Factor Authentication was based on our application, not on text messages, the access to the service won’t be lost. If the verification was based on SMS, then you should contact the service you want to log in to.
You have just downloaded the 2FAS app and there are no codes on the main screen? That is by design! Here is why: to see your unique authentication codes you first need to connect your selected service account (like Facebook, Gmail, Twitter, or WordPress) with 2FAS App. Please watch the relevant video tutorial here: at https://2fas.com/tutorial/.
When your service account is linked with 2FAS App, you will start seeing codes on the main screen of the app.
If you have not turned on the Two-Factor Authentication method on your service account, but it asks you to provide the code, it could mean that someone has compromised your account and enabled Two-Factor Verification without your knowledge. Contact your service support (e.g. Facebook Support Team) ASAP to clarify this situation.
Application is not working? Let’s see what’s happening?
If your codes do not work or validation errors appear, it could mean that Date & Time settings on your mobile device are incorrect. Please ensure that these settings are set correctly.
Make sure that your device is connected to the internet. This is necessary to keep the device consistently updated to the most accurate date.
Although 2FAS App works offline, it requires date and time synchronization with the service you are signing into.
This is how to fix this problem for Android:
This is how to fix this problem for IOS:
If you are sure your time setting is correct and you keep receiving the error message check whether your code is correct here https://2fas.com/check-token/.
If you lose your phone or delete the application from your phone, we cannot tell you or restore your codes. 2FAS Authenticator Application works offline and codes are stored locally and generated every 30 seconds (only on your device) for security reasons.
If you have generated and written down or saved the backup codes and Secret Keys for your account, you can try to use them to log in now. If you don’t know what backup codes are please read more about them in question 10 and question 18.
Backup codes are the codes you can use when you have to log in to your account from an untrusted device and you have no access to 2FAS App to read your one-time code/token.
Unfortunately, if you don’t know or lost your backup codes to any of your accounts, we are not able to restore them for you, simply because we are not involved in their generation and we have no access to them. Backup codes are generated by your service (e.g. Facebook). Once you generate them you can write them down and store them in a safe place. If you don’t have the backup codes for your account contact your service’s Support Team (e.g. Facebook Support Team). They will probably enable an alternative authentication method such as SMS which will allow you to recover access to your account. Unfortunately, it may happen that due to the given service’s policy it is impossible.
Recently, we have introduced a new feature of 2FAS App that allows you to backup your Secret Keys safely and anonymously on your cloud. This backup method is completely secure and no one except you has access to your keys (not even 2FAS App team). If you want to learn how to turn on 2FAS Backup go to question 15.
If you recently purchased a new phone and would like to start using 2FAS these are the things you can do:
In order to enable 2FAS App for your account (e.g. Facebook account or any other online service), you have to scan a QR code. The QR code will be generated by your service’s website after you choose 2FAS App as your authentication method. Sometimes you may not be able to scan the QR code, for example during system configuration on your mobile phone, when your phone is lost, or your camera does not work.
In such a case you can type in a Service Key. A Service Key is a code which is a unique string of characters that allows you to enable two-factor authentication for your account when you do not have the option of scanning a QR code. Usually, you will find the Service Key next to the QR code.
It’s a good idea to save your Service Keys somewhere other than your phone. You should also generate and save the backup codes for all your services. In case you lose your phone, you will be able to use the backup codes to log in to your services from the new phone and then use the relevant Secret Keys to configure 2FAS App for these services.
A PIN code is a 6 or 4-digit password that protects your 2FAS App (and the authentication codes it stores) on your mobile device. You are asked to enter your PIN code every time you open the app.
If you want to activate or deactivate PIN code protection, go to Settings -> PIN. You can also enable biometric verification in settings.
We are unable to restore your PIN and therefore you will be not able to restore access to your account. Choose your PIN carefully and ensure you remember it or save it in a safe place.
It’s a good idea to make a plan in case you don’t have access to your trusted devices and lose or damage your phone or delete 2FAS App. Here are some options to ensure you can still have access to your Secret Keys in order to log into your accounts in such cases.
Go to Settings/Menu, 2FAS Backup, and simply turn on iCloud or Google Drive sync. If you want to learn more about 2FAS Backup, please go to question “How to turn on 2FAS Backup?”.
If our cloud storage option is not the right solution for you, you can export all your codes to a local file. To do that go to Settings/Menu, 2FAS Backup, and tap “Export” and save the file on your device. Later on, you can import this file in the same place, simply by taping “Import”. The cool thing about this solution is that these files can be exported and imported across both Android and iOS platforms!
Remember that you can always opt for a more traditional backup method and manually note down your Secret Keys:
Please note that you have to follow these steps for each service separately.
Go to Settings/Menu, 2FAS Backups, and simply tap the switch titled “iCloud Sync” (on iOS) or “Google Drive Sync” (on Android) to enable it.
If you use iOS, you will be automatically connected to iCloud. If you use Android you need to confirm 2FAS access to your Google Drive, this will allow you to save your backup copy on your private cloud.
The backup is optional and you may turn it off at any time. If you do not enable backup, your codes will only be stored on your phone. You are not required to sync your keys with 2FAS Backup in order to use your phone as a second-factor authentication device.
If you are an iOS user and have a new phone — or are adding a new device — you can restore your keys by following these steps:
If you are an Android user and have a new phone — or are adding a new device — you can restore your keys by following these steps:
One of the features that distinguishes 2FAS App from other authentication solutions is that you can sync many devices at the same time, so if one device is lost or stolen, you won’t lose access to all your 2FAS-protected accounts.
Follow these steps:
Smartphone backup is your smartphone content, data, and settings copied and stored outside of your phone. If you have an issue with your device, you can restore the contents from your backup rather than losing it. Backup methods and efficiencies differ for iOS devices, such as an iPhone, iPad or iPod Touch and Android devices. When you upgrade your phone, you should be able to restore all your data to your new phone.
If you didn’t backup your smartphone or your backup method wasn’t effective 2FAS App may not work properly on your new phone and it will be treated as an untrusted device. In such a case, you will need your services’ backup codes to access your accounts.
What are backup codes?
Once you enable Two-Factor Verification for your account, the service (e.g. Facebook) will generate a set of backup codes. We advise you to print them or write them down and save them in a safe place. They are once-off codes you can use to access your account from an untrusted/ new device.
When you enable Two-Factor Authentication, simply note down your backup codes and Secret Keys and keep them safe. Here is how to do that step by step: