Two-factor authentication (2FA) adds a one-time code on top of your password. Once enabled, signing in requires both - even if someone steals your password, they can't get in without your phone.
Before you start Install an authenticator app.
Any TOTP-compatible app works. Common options:
- Google Authenticator: iOS / Android
- Authy: iOS / Android / desktop
- 1Password: built into the password manager
- Bitwarden: built into the password manager
If you already use a password manager that does TOTP, use that one - it backs the codes up with the rest of your vault.
Open your account security page
- In the sidebar, find your profile button at the bottom - it shows your avatar, name, and email.
- Click on your profile, a small menu will open upward.
- Click Settings to navigate to your account settings page.
- Along the top of the page, click the Security tab.
You're now on the security page. You'll see four cards stacked top to bottom: Change Password, Two-Factor Authentication, Linked providers, and Devices.
2. Start 2FA setup
- Find the Two-Factor Authentication card. If 2FA is off, it shows a Disabled badge in the top right and a short description in the body.
- Click Set up 2FA on the right side of the card. A dialog opens.
3. Scan the QR code or enter your key.
Scanning a QR code
- The dialog shows a QR code. Open your authenticator app and tap its "add account" button - the icon varies by app but is usually a + in the top corner.
- Point your phone's camera at the QR code on screen. The app picks it up and adds a new entry called like Synteq ([email protected]).
Entering a code
Alternatively to scanning a QR code, some TOTP applications require a key to be entered (such as 1Pass or BitWarden). For these methods click on the long key found under "Can't scan? Enter this key manually:" to copy it. In your authenticator app, choose "Enter a setup key" and paste the value.
4. Enter the verification code
- Your authenticator now shows a six-digit code that rolls over every 30 seconds.
- Type those six digits into the Verification code boxes in the dialog. You don't need to type one digit per box - paste works too.
- Click Enable 2FA.
If the code is rejected, it usually means it just rolled over. Wait for the next one and try again.
5. Save your backup codes
The card now shows an Enabled badge and a panel of ten backup codes appears.
These codes are your fallback if you lose your phone. Save them somewhere safe before leaving this page
they won't be shown again. Recommended:
- Click Copy all and paste them into your password manager as a secure note.
- Or print them and store with other recovery documents.
Each code is single-use. If you use one to sign in, cross it off your list and plan to regenerate the set.
Once you've saved them, click I've saved them to dismiss the panel.
What changes from here
Next time you sign in:
- Enter your email and password as usual.
- The portal asks for a six-digit code. Open your authenticator app, copy the current code, and paste it.
- You're in.