How to Set Up 2FA — Step-by-Step Guide
Two-factor authentication takes about 5 minutes to set up and dramatically reduces your risk of account takeover. Here's how to enable it on the accounts that matter most.
Step 1 — Install an authenticator app
Before enabling 2FA anywhere, install an authenticator app on your phone. It will generate the 6-digit codes used as your second factor.
- Authy (recommended) — free, encrypted backup, multi-device. iOS & Android.
- Aegis — open source, Android only. Best for privacy-conscious users.
- Google Authenticator — simple, no frills. Works if you already have it.
- Microsoft Authenticator — required for Microsoft 365 accounts.
See our full authenticator app comparison for details.
Step 2 — Enable on your most important accounts first
Prioritize in this order:
Step-by-step: how to enable 2FA by platform
- Go to myaccount.google.com/security
- Click 2-Step Verification → Get Started
- Choose Authenticator app as your method
- Open your authenticator app, tap +, and scan the QR code
- Enter the 6-digit code from your app to verify
- Download your backup codes and store them offline
- On iPhone: Settings → [Your Name] → Password & Security
- Tap Two-Factor Authentication → Turn On
- Apple uses a built-in system (sends codes to trusted Apple devices) — no external app needed
- Add a trusted phone number as backup
- Note: Apple ID 2FA cannot be turned off once enabled on newer accounts
- Go to Settings → Password and authentication → Two-factor authentication
- Click Enable two-factor authentication
- Choose Authenticator app (TOTP) — avoid SMS if possible
- Scan the QR code with your authenticator app
- Enter the 6-digit code to confirm
- Download your recovery codes — GitHub requires these if you lose access
- Go to Settings & Privacy → Settings → Accounts Center → Password and security
- Click Two-factor authentication → select your account
- Choose Authentication app
- Scan the QR code or enter the setup key manually
- Enter the 6-digit code to complete setup
- Go to Profile → Menu (☰) → Settings → Accounts Center → Password and security
- Tap Two-factor authentication
- Choose Authentication app
- Scan the QR code with your authenticator app
- Enter the 6-digit code to verify and complete setup
- Go to Settings → Security and account access → Security → Two-factor authentication
- Select Authentication app (requires X Premium for TOTP since March 2023)
- Scan the QR code with your authenticator app
- Enter the confirmation code
- Free accounts can use SMS-based 2FA or a security key instead
Verify your TOTP setup in your browser
Use our free TOTP generator to test that your authenticator secret is working correctly before finishing setup.
Open TOTP Generator →More 2FA guides
- What Is Two-Factor Authentication? — Complete Guide
- Best Authenticator Apps in 2026
- Best Google Authenticator Alternatives
- Free TOTP Generator Tool
Frequently Asked Questions
About 2–5 minutes per account. Installing the authenticator app takes an extra 2 minutes the first time. Once installed, each additional account takes about 1–2 minutes.
Use your recovery codes — you should have saved these during setup. If not, most platforms offer account recovery via trusted phone number or email. This is why saving recovery codes when you set up 2FA is critical.
An authenticator app is significantly more secure. SMS codes can be intercepted via SIM-swapping. Authenticator codes are generated offline and never transmitted over the phone network.
One-time backup codes generated when you enable 2FA. Each can be used once to log in if you lose your authenticator device. Store them securely offline — printed on paper or in an encrypted notes app. Never store them with your passwords.
Recommended
Looking for a full password manager?
2FA protects your login — but your passwords also need to be strong and unique. A password manager generates and stores them automatically.
Affiliate disclosure: links above may earn a commission at no cost to you.