What is two-step verification?
Two-step verification (2SV, also known as two-factor authentication) adds security by requiring an extra step when you sign in to your account or try to edit sensitive information like your password. We support these 2SV methods:
| 2SV method | Security level | When you log in... |
|---|---|---|
| SMS text message | Good | We'll text you a 6-digit code you must enter. You can't sign in if you don't receive the text. |
| Authenticator app, like Google Authenticator or Authy, on your phone or other device | Better | You must enter the code that the app shows you. You can't sign in if you don't have access to the app. |
| Hardware security key, such as a Yubikey or Google Titan | Best | You must insert the hardware key, otherwise you won't be able to sign in. Make sure you also add a different backup method so support can still verify your identity. |
Set a backup 2SV method
To minimize hassle when something goes wrong (like losing your phone), set a backup 2SV method. When you enable 2SV, set the backup at the same time.
Note: For best results, set your backup on a different device. For example, if an authenticator app on your laptop is your main 2SV, set SMS on your mobile phone as the backup method.
An easier way to use 2SV
By default, 2SV is required for every login. Instead, you can set up 2SV so you only need it for high-risk transactions like changing your account security (password, PIN, 2SV methods), or if you choose to cancel a domain's Protected Registration. If you rarely need a high-risk transaction, this could be a better fit for you.
More info
- Here's how to enable main and backup 2SV methods.
- You can cancel 2SV anytime, but keep in mind you have to use 2SV to cancel it.
- Here's what you can do if you didn't receive your 2SV code.
