Set Up Two-Factor Authentication on Your Main Accounts
Two-factor authentication is one of the most effective ways to protect your accounts. Here's how to turn it on for Microsoft, Google, Apple, and Facebook.
Two-factor authentication (2FA) β also called two-step verification β adds a second check when you sign in. Even if someone steals your password, they still can't get in without the second factor. It takes about five minutes to set up and can save you enormous grief.
How 2FA Works
When you sign in with your password, the service also asks for a one-time code. That code arrives via text message, an authenticator app, or a prompt on a trusted device. You enter it, and you're in. Without it, the login is blocked.
Microsoft Account
- Sign in at account.microsoft.com and go to Security > Advanced security options.
- Under Two-step verification, click Turn on.
- Follow the setup wizard. You can use the Microsoft Authenticator app (recommended), an email code, or a phone number.
Google Account
- Go to myaccount.google.com and click Security in the left panel.
- Under How you sign in to Google, click 2-Step Verification, then click Get started.
- Choose your second factor: Google prompts (easiest), an authenticator app, a text/call, or a hardware key.
Apple ID
- On an iPhone or iPad, go to Settings > [your name] > Sign-In & Security > Two-Factor Authentication.
- On a Mac, go to System Settings > [your name] > Sign-In & Security.
- Tap or click Turn On Two-Factor Authentication and follow the prompts.
- Open Settings & privacy > Settings > Accounts Centre > Password and security > Two-factor authentication.
- Select the account and choose your method: authentication app, text message, or a hardware security key.
Which Method Is Best?
An authenticator app (such as Microsoft Authenticator or Google Authenticator) is generally more secure than SMS codes, because text messages can be intercepted. But even SMS-based 2FA is far better than no 2FA at all. Pick whatever method you'll actually use consistently.
Need help choosing an authenticator app or troubleshooting setup? Ask us.
Frequently asked questions
If I lose my phone, will I be locked out of all my accounts permanently?
Not if you plan ahead. Every service that offers 2FA also provides backup codes β a set of one-time codes you can save somewhere safe (printed or in a secure note). When setting up 2FA, always download or print your backup codes and store them somewhere you can find them even without your phone.
I keep getting 2FA codes I didn't request β what does that mean?
Unsolicited 2FA codes almost always mean someone is trying to sign in to your account with your password. Do not share the code with anyone who contacts you. Change your password immediately and check your account's recent activity for unauthorised logins.
Comments & Questions (0)
No comments yet β be the first to ask. Comments appear after review.
Leave a comment
Your comment appears after our team approves it. Or sign in to post faster.