Security Settings
Protect your account with multiple layers of security including two-factor authentication, passkeys, and social login.
Two-Factor Authentication (2FA)
Add a second layer of security beyond your password.
Email Codes
- Receive a 6-digit code via email when you log in
- Codes expire after 10 minutes
- Simple to set up - just enable in Security settings
Authenticator App (TOTP)
- Use apps like Google Authenticator, Authy, or Microsoft Authenticator
- Scan the QR code to link your account
- Codes refresh every 30 seconds
- Works offline - no internet needed
Authenticator apps are more secure than email codes and work offline.
Passkeys (WebAuthn/FIDO2)
Go passwordless with the most secure authentication method available.
What are Passkeys?
- Cryptographic keys stored on your device
- Use fingerprint, face recognition, or device PIN
- Cannot be phished or stolen remotely
- Sync across devices (iCloud Keychain, Google Password Manager)
Supported Devices
- iPhone/iPad: Face ID or Touch ID
- Mac: Touch ID or system password
- Android: Fingerprint or device PIN
- Windows: Windows Hello (fingerprint, face, or PIN)
- Hardware keys: YubiKey, Titan Security Key
Managing Passkeys
- Register multiple passkeys for different devices
- Name each passkey for identification (e.g., "iPhone 15")
- Remove passkeys you no longer use
Backup Codes
Recovery codes for when you lose access to your 2FA device.
- Generate 10 one-time recovery codes
- Each code can only be used once
- Store securely (password manager, safe)
- Regenerate at any time (invalidates old codes)
Important: Store backup codes securely. If you lose your 2FA device AND backup codes, you may be locked out.
Social Login (OAuth)
Sign in using existing accounts from other services.
Supported Providers
| Personal or Workspace accounts | |
| Microsoft | Personal, work, or school accounts |
| GitHub | Developer accounts |
| Professional accounts | |
| Facebook accounts | |
| Twitter/X | Twitter/X accounts |
| Apple | Apple ID |
| Bluesky | AT Protocol authentication |
Managing Linked Accounts
- Link multiple providers to your account
- Unlink accounts you don't want to use
- At least one login method must remain active
Enterprise SSO
For organizations with centralized identity management.
- Okta: Enterprise identity provider
- Azure AD: Microsoft enterprise directory
- Auth0: Flexible identity platform
- Google Workspace: Organization Google accounts
Enterprise SSO is configured at the organization level. Contact your IT administrator.
Best Practices
- Use a strong, unique password - Don't reuse passwords
- Enable 2FA - Authenticator apps are most secure
- Register passkeys - Can replace passwords entirely
- Save backup codes - Store in a password manager
- Review linked accounts - Remove any you don't recognize