How do I set up two-factor authentication (2FA)?

Use an authentication app or Yubikey for your 2FA.

To maximize the security of your account, we recommend that you set up two-factor authentication (2FA). This ensures that even if your account password is compromised, an attacker still needs a second piece of information to access your account.

Download an authentication app

If you don't already have one, you're going to need a Time-based One-time Password (TOTP) authentication app for your smartphone. We do not support text message-based (SMS) 2FA. There are a number of options available, but apps we recommend include:

Set up 2FA

  1. Sign in to your account.
  2. In the bottom left of the navigation bar, click Info & Security.

  3. On the Settings page, open the SECURITY tab.
  4. Under Two-Factor Authentication, click Enable 2FA.

    Screen Shot 2021-12-29 at 12.21.36 PM
  5. Scan the QR code using your TOTP app. Your app will add a new item labeled "Unchained" showing your username.

  6. Enter the six numbers shown on your authentication app and click Enable 2-Factor Authentication.

    Screen Shot 2021-12-29 at 12.24.44 PM
  7. You'll receive a message saying the 2FA setup has been a success before you're automatically logged out.

    Screen Shot 2021-12-29 at 12.25.01 PM

    Logging into your account with 2FA

    Now that you've set up 2FA, each time you log in to your account, after entering your username and password, an additional one-time passcode will be requested. You will need to make sure you always have your smartphone with the authentication app available to you to be able to log in to your account. 

    Screen Shot 2021-12-29 at 12.26.17 PM

Alternate steps to set up Yubikey with Yubico Authenticator

  1. Download and install Yubico Authenticator from Yubico's website.
  2. Click the three-dot menu in the upper-right and click Add account.
  3. Copy/paste the secret key into Yubico Authenticator, or scan the qr code.

    That's it!  The Yubico Authenticator App will now generate time-based one-time passwords for your 2FA.

Note: If you lost your cell phone or need to reset your 2FA for any reason, you can reset your 2FA using your email.