Two-factor authentication (MFA) adds a second step to sign-in: after your
password, you enter a one-time code from an authenticator app. This protects your
account even if your password is compromised.
Enable two-factor authentication
Open Security settings
In the sidebar, go to Security (/settings/mfa).
Scan the QR code
Open an authenticator app — such as Google Authenticator or Microsoft
Authenticator — and scan the QR code. If you can’t scan, enter the Manual
Entry Key shown below the code instead.
Enter the code
Type the 6-digit code generated by your authenticator app into the
Authentication Code field.
Enable
Select Enable MFA. From now on, you’ll be asked for an authenticator code
each time you sign in.
Disable two-factor authentication
To turn MFA off, return to this page and select Disable.
Keep your authenticator app safe. If you lose access to it while MFA is enabled,
you may be locked out of your account. Consider keeping a backup of the manual
entry key in a secure place.
The manual entry key and QR code are unique to your account — never share them.
(They are blurred in the screenshot above for that reason.)
