FAQ - 2FAS. Two Factor Authentication Service, Inc.

FAQ for Mobile Applications

You are probably overwhelmed with all the new terms and definitions you are exposed to when starting your adventure with Two-Factor Authentication. Here is a glossary of the most commonly used and most easily confused terms:

  • 2FA / Two-Factor Authentication / 2-Step Verification Read: How does 2FA work.
  • Service – an online platform that requires setting up an account (such as Facebook, Instagram, Luno, etc.).
  • 2FAS – This is the name of our app.
  • Trusted device – a device you use frequently, such as your personal mobile phone, tablet, or home computer. If you don’t want to enter a one-time code every time you sign in to your services, you can mark your computer or mobile device as trusted. With trusted computers and devices, you don’t need to enter a verification code each time you sign in.
  • Untrusted device – a device, such as a phone, tablet, or computer that has not been authenticated. You have to enter a one-time code/token every time you log in from such a device.
  • Code/token/Time-based One-Time Passwords (TOTP) – usually a 6 digit code used to log in to your services as a second step of user verification. When you are signing in from an untrusted device for the first time, you will be asked for a code/token after you enter your password. Codes/tokens are generated locally (on your phone) every 30 seconds by 2FAS App.
  • Backup codes – codes generated by the service (e.g. Facebook) that will allow you to log in when you lose your access to tokens generated by 2FAS App and you have to log in from an untrusted device. Keep them safe.
  • PIN – an acronym from Personal Identification Number. 4 or 6 digit code that protects your app from unauthorized use. 2FAS App PIN is optional. You can turn it on and off in 2FAS app settings.
  • QR code – a matrix barcode generated by your service in the process of enabling Two-Factor Authentication. You can scan it with your smartphone camera to complete the configuration of 2FA for your service.
  • Secret Key / Service Key – is a unique string of characters that you can type in to configure Two-Factor Authentication for your account when you do not have the option of scanning a QR code. Usually, you will find the Service Key embedded in the QR code.
  • 2FAS Backup – a remote backup service that allows you to store service keys in a secure cloud based storage and recover them if you can’t access your device. 2FAS Backup is based in your private cloud (iCloud/iOS, Google Drive/Android) and no one except you has access to it.

Two-Factor Authentication (also known as Two-Factor Authentication or 2FA) is a security process that is usually launched when you sign in to your account from a different device for the first time. 2FA is optional and you can enable it for various services (e.g. Facebook). After you enable 2FA for your account, your identity will be confirmed in two independent sign-in steps every time you sign in from an untrusted device. The first step is to provide the password for your account. The second step is to enter the verification code (also called ‘token’) which can be generated by an app (such as 2FAS Authenticator) or sent to your phone number as SMS (depends on your settings). Because your password alone is no longer enough to access your account, Two-Factor Authentication dramatically improves the security of your accounts (e.g. your Facebook account) and all the personal information you store on your accounts. Even if someone takes over your password and wants to sign in to your account from a different device, they still need a code that allows access. With Two-Factor Authentication, only you can access your account on your trusted device. 2FAS Authenticator is an application that can generate verification codes for your accounts once you enable the 2FA Authentication for this particular account / service.

Sometimes just a password for your Facebook or Instagram account isn’t enough to protect your sensitive info. To improve security, you can enable 2FA Authentication for your accounts and services. Two-Factor Authentication is a 2 steps security process launched when you sign in to your account from a different device for the first time. After you enable this feature, the service will ask you what you would like to choose as the second step of your verification. You can choose to use an application that generates one-time codes/tokens for your accounts, such as 2FAS Authenticator App. 2FAS App generates codes offline and changes them every 30 seconds. That way, even if a hacker has your password and tries to log in to your account from a different device, he still has to crack your one-time authorization code.

You can easily enable 2FA by using 2FAS Authentication App for the following services: Facebook, Gmail, Instagram, Twitter, Dropbox, Amazon, LUNO, Epic Games, PayPal, Rockstar, Snapchat and many others.

We have made short video tutorials to walk you through the configuration of 2FAS App for each of these services. Please watch the relevant video tutorial here: https://2fas.com/tutorial/.

Once you enable 2FA for a particular service, 2FAS App will be generating one-time authorization codes on your phone. You will be asked to enter a code every time you log in to this service from a new device. You may also want to use our 2FAS Backup feature and prevent account lockouts in case you lose or damage your phone. Read more about it in question 15.

So, you decided to enable Two-Factor Authentication on your service (e.g. Facebook account) and use the 2FAS App for it. When you enable Two-Factor Authentication, only you can access your account on your trusted devices. If a hacker has your password and tries to log in to your account from a different device, he still has to crack your one-time token generated by 2FAS App installed on your phone. Let’s say you lose your phone and have no access to your one-time tokens and you can’t use a trusted device. This situation puts you in a position of ‘a hacker’: you have the password but you don’t have the one-time token and you are logging in from an untrusted device. You won’t be able to log into your own accounts. This is what you can do to mitigate this risk:

  1. SAVE YOUR BACKUP CODES. Once you enable Two-factor Verification for your account, the service (e.g. Facebook) will generate a set of backup codes. We advise you to print them or write them down and keep them in a safe place. In case you have to log in to your account from an untrusted device and don’t have access to 2FAS Authenticator and its one-time tokens, you can use one of the backup codes to log in.
  2. SAVE YOUR SERVICE KEYS. In order to enable 2FAS App for your account, you have to scan a QR code. The QR code will be generated by your service website after you choose 2FA App as your authentication method. Usually, next to the QR code, you will find the Service Key. It’s a good idea to save your Service Keys somewhere other than your phone. In case you lose your phone, you will be able to use the Service Keys to configure 2FAS App for your services on your new phone.

You can disable the Two-Factor Authentication in your service’s account settings (e.g. Facebook account settings). When you disable this function for your account, and the account will no longer prompt you to enter the one-time token when logging in from an unauthorized device. You can then safely remove this service from 2FAS App.

It is important that you disable the Two-Factor Authentication for your account before you delete the service from your 2FAS App. If you first delete the service from 2FAS App, the service will still demand the one-time tokens which you will no longer have and you won’t be able to log in to your account.

2FAS Authenticator app works based on codes (tokens) rather than a phone number. If your Two-Factor Authentication was based on our application, not on text messages, the access to the service won’t be lost. If the verification was based on SMS, then you should contact the service you want to log in to.

You have just downloaded the 2FAS app and there are no codes on the main screen? That is by design! Here is why: to see your unique authentication codes you first need to connect your selected service account (like Facebook, Gmail, Twitter, or WordPress) with 2FAS App. Please watch the relevant video tutorial here: at https://2fas.com/tutorial/.

When your service account is linked with 2FAS App, you will start seeing codes on the main screen of the app.

Security note:

If you have not turned on the Two-Factor Authentication method on your service account, but it asks you to provide the code, it could mean that someone has compromised your account and enabled Two-Factor Verification without your knowledge. Contact your service support (e.g. Facebook Support Team) ASAP to clarify this situation.

Application is not working? Let’s see what’s happening?

  1. You don’t see any authentication codes on the main screen?
    • To see your unique authentication codes you first need to connect your selected service account (like Facebook, Gmail, Twitter, or WordPress) with 2FAS App.
    • Read how to connect your service account with 2FAS App or watch the relevant video tutorial here: at https://2fas.com/tutorial/.
  2. You have connected your service account, but you still can’t see the codes?
    • Please double-check that you have properly connected your service account with 2FAS App.
    • If the problem still occurs, contact our support team: [email protected].
  3. Code does not work or you have an expired/valid error?
    • It is probably caused by the incorrect time set on your phone. Read FAQ Question no 8 where we explain step by step how to fix this problem.
    • If you are sure your time setting is correct and you keep receiving the error message check whether your code is correct here https://2fas.com/check-token/.

If your codes do not work or validation errors appear, it could mean that Date & Time settings on your mobile device are incorrect. Please ensure that these settings are set correctly.

Make sure that your device is connected to the internet. This is necessary to keep the device consistently updated to the most accurate date.

Although 2FAS App works offline, it requires date and time synchronization with the service you are signing into.

This is how to fix this problem for Android:

  1. Go to Phone Settings
  2. Tap Additional settings / General settings (depending on your phone)
  3. Click Date and Time
  4. Enable Automatic Date and Time
  5. If already enabled, disable it, wait a few seconds and re-enable it

This is how to fix this problem for IOS:

  1. Go to Settings
  2. Click General
  3. Click Date & Time
  4. Enable Set Automatically
  5. If already enabled, disable it, wait a few seconds and re-enable it

If you are sure your time setting is correct and you keep receiving the error message check whether your code is correct here https://2fas.com/check-token/.

If you lose your phone or delete the application from your phone, we cannot tell you or restore your codes. 2FAS Authenticator Application works offline and codes are stored locally and generated every 30 seconds (only on your device) for security reasons.

If you have generated and written down or saved the backup codes and Secret Keys for your account, you can try to use them to log in now. If you don’t know what backup codes are please read more about them in question 10 and question 18.

Backup codes are the codes you can use when you have to log in to your account from an untrusted device and you have no access to 2FAS App to read your one-time code/token.

Unfortunately, if you don’t know or lost your backup codes to any of your accounts, we are not able to restore them for you, simply because we are not involved in their generation and we have no access to them. Backup codes are generated by your service (e.g. Facebook). Once you generate them you can write them down and store them in a safe place. If you don’t have the backup codes for your account contact your service’s Support Team (e.g. Facebook Support Team). They will probably enable an alternative authentication method such as SMS which will allow you to recover access to your account. Unfortunately, it may happen that due to the given service’s policy it is impossible.

Recently, we have introduced a new feature of 2FAS App that allows you to backup your Secret Keys safely and anonymously on your cloud. This backup method is completely secure and no one except you has access to your keys (not even 2FAS App team). If you want to learn how to turn on 2FAS Backup go to question 15.

If you recently purchased a new phone and would like to start using 2FAS these are the things you can do:

  1. If you still have your old phone you can use it to log in to your accounts and then configure it for your new phone or manually re-type your service name and the Service Key.
  2. If you don’t have your old phone but you have generated and written down or saved the backup security codes for your service’s account you can use one of them now to log in and configure 2FAS App for your services (e.g. Facebook) on your new phone.
  3. If you don’t have your old phone nor the backup security codes, contact the service’s Support Team (e.g. Facebook Support Team). They will probably enable an alternative authentication method such as SMS which will allow you to recover access to your account. Unfortunately, it may happen that due to the given service’s policy it is impossible.
  4. If you upgrade your iPhone, by restoring a backup, you should be able to log in to your accounts as usual.
  5. If you use 2FAS Backup, you should download the app on a new device, enable 2FAS Backup and you will get the access to your Keys.

In order to enable 2FAS App for your account (e.g. Facebook account or any other online service), you have to scan a QR code. The QR code will be generated by your service’s website after you choose 2FAS App as your authentication method. Sometimes you may not be able to scan the QR code, for example during system configuration on your mobile phone, when your phone is lost, or your camera does not work.

In such a case you can type in a Service Key. A Service Key is a code which is a unique string of characters that allows you to enable two-factor authentication for your account when you do not have the option of scanning a QR code. Usually, you will find the Service Key next to the QR code.

It’s a good idea to save your Service Keys somewhere other than your phone. You should also generate and save the backup codes for all your services. In case you lose your phone, you will be able to use the backup codes to log in to your services from the new phone and then use the relevant Secret Keys to configure 2FAS App for these services.

A PIN code is a 6 or 4-digit password that protects your 2FAS App (and the authentication codes it stores) on your mobile device. You are asked to enter your PIN code every time you open the app.

If you want to activate or deactivate PIN code protection, go to Settings -> PIN. You can also enable biometric verification in settings.

We are unable to restore your PIN and therefore you will be not able to restore access to your account. Choose your PIN carefully and ensure you remember it or save it in a safe place.

It’s a good idea to make a plan in case you don’t have access to your trusted devices and lose or damage your phone or delete 2FAS App. Here are some options to ensure you can still have access to your Secret Keys in order to log into your accounts in such cases.

Go to Settings/Menu, 2FAS Backup, and simply turn on iCloud or Google Drive sync. If you want to learn more about 2FAS Backup, please go to question “How to turn on 2FAS Backup?”.

If our cloud storage option is not the right solution for you, you can export all your codes to a local file. To do that go to Settings/Menu, 2FAS Backup, and tap “Export” and save the file on your device. Later on, you can import this file in the same place, simply by taping “Import”. The cool thing about this solution is that these files can be exported and imported across both Android and iOS platforms!

Remember that you can always opt for a more traditional backup method and manually note down your Secret Keys:

  1. Turn on PIN
  2. Click the Edit button on the main screen
  3. Click on the pencil/arrow icon next to the service
  4. Write down the service’s Secret Key on a piece of paper or save it as well protected file

Please note that you have to follow these steps for each service separately.

Go to Settings/Menu, 2FAS Backups, and simply tap the switch titled “iCloud Sync” (on iOS) or “Google Drive Sync” (on Android) to enable it.

If you use iOS, you will be automatically connected to iCloud. If you use Android you need to confirm 2FAS access to your Google Drive, this will allow you to save your backup copy on your private cloud.

The backup is optional and you may turn it off at any time. If you do not enable backup, your codes will only be stored on your phone. You are not required to sync your keys with 2FAS Backup in order to use your phone as a second-factor authentication device.

If you are an iOS user and have a new phone — or are adding a new device — you can restore your keys by following these steps:

  1. Install 2FAS Application on your new device
  2. Log in to iCloud (the same account you used on the previous device)
  3. Go to Settings -> 2FAS Backup
  4. Turn on 2FAS Backup
  5. Select the previously used account
  6. Allow access to iCloud
  7. The codes will be automatically synced on the new device

If you are an Android user and have a new phone — or are adding a new device — you can restore your keys by following these steps:

  1. Install 2FAS Application on your new device
  2. Log in to Google account (the same account you used on the previous device)
  3. Go to Menu -> 2FAS Backup
  4. Turn on 2FAS Backup
  5. Select the previously used account
  6. Allow access to the cloud (Google Drive)
  7. The codes will be automatically synced on the new device

One of the features that distinguishes 2FAS App from other authentication solutions is that you can sync many devices at the same time, so if one device is lost or stolen, you won’t lose access to all your 2FAS-protected accounts.

Follow these steps:

  1. Make sure you are logged in to your cloud (iCloud on iOS devices / Google Drive on Android devices)
  2. Install 2FAS Application on your new device
  3. Go to 2FAS Settings -> 2FAS Backup
  4. Turn on 2FAS Backup
  5. Allow access to the cloud
  6. The codes/tokens will be automatically synced on the new device

Smartphone backup is your smartphone content, data, and settings copied and stored outside of your phone. If you have an issue with your device, you can restore the contents from your backup rather than losing it. Backup methods and efficiencies differ for iOS devices, such as an iPhone, iPad or iPod Touch and Android devices. When you upgrade your phone, you should be able to restore all your data to your new phone.

\n

If you didn’t backup your smartphone or your backup method wasn’t effective 2FAS App may not work properly on your new phone and it will be treated as an untrusted device. In such a case, you will need your services’ backup codes to access your accounts.

What are backup codes?

Once you enable Two-Factor Verification for your account, the service (e.g. Facebook) will generate a set of backup codes. We advise you to print them or write them down and save them in a safe place. They are once-off codes you can use to access your account from an untrusted/ new device.

When you enable Two-Factor Authentication, simply note down your backup codes and Secret Keys and keep them safe. Here is how to do that step by step:

  1. Enable recovery methods for your account (e.g. SMS, phone call). The recovery methods are provided by the online services themselves (e.g. Facebook), not by 2FAS App. They usually require providing your phone number.
  2. Once you enable Two-Factor Authentication for your account, the service (e.g. Facebook) will generate a set of backup codes. We advise you to print them or write them down and save them in a safe place. Please remember that 2FAS App does not generate, store backup codes, nor have access to them.
  3. Print or note down all your Service Keys on a piece of paper. Remember to hide them and keep them safe. You can use them to configure 2FAS App for your accounts on a new device.

Yes. However, these are separate charges. Simply go to our donation page and create a new one-time donation.

It would be awesome! 2FAS is a free app, and in order to maintain a high level of development with a rapidly growing user base, we need your help. Your support will help us cover the development costs. Every dollar you donate will turn into little improvements in 2FAS. They may bear fruit as a substantial transformation in online security because every little thing matters.

To change the monthly donation, you need to cancel your monthly donation subscription. To do that, contact us at [email protected] to cancel your subscription. Then select the new monthly donation and follow the on-screen directions to confirm payment.

To do that, you must cancel your monthly donation and set up a new one. Contact us at [email protected] to cancel your subscription. Then select the new monthly donation and follow the on-screen directions to confirm payment.

After donating, you should receive an e-mail from Stripe with your receipt or invoice. If you didn't get it, then please contact us at [email protected].

We are grateful for all donations received. Unfortunately, it is not uncommon for fraudsters to use donation mechanisms such as ours to test stolen credit cards to see if they work. Those people tend to use a very small amount for their testing: a minimum donation amount helps to deter this fraudulent activity.

To cancel your donation subscription, simply contact us at [email protected].

Starting from version 1.2, the 2FAS browser extension uses system-native notifications.

Your browser may be configured to disallow notifications. Whether you use Windows or Mac, you can fix this problem with a few clicks.

On Windows, click the Start button and then Settings, select System, Notifications, and enable them at the top of the page. Make sure your browser notifications are also enabled.

Windows settings

On Mac, click the Apple icon in the menu bar and select System Preferences. Click Notifications & Focus. Find your browser (there will be two instances for each browser), and enable notifications for both.

Mac OS settings
If you didn't find a solution,
please contact us.