Account & Security
Multi-Factor Authentication (MFA)
Add a second layer of security with authenticator apps or hardware keys.
Why enable MFA?
Multi-factor authentication protects your account even if your password is compromised. It is strongly recommended for all accounts, especially supervisors and admins.
Supported methods
- Authenticator app (TOTP) — use any TOTP-compatible app such as Google Authenticator, Authy, or 1Password. Scan the QR code during setup.
- Hardware security key (WebAuthn) — register a YubiKey, Touch ID, or Windows Hello device.
- Recovery codes — single-use backup codes in case you lose access to your primary method.
Setting up MFA
Go to Settings > Security and click Enable MFA. Follow the on-screen instructions to register your preferred method. We recommend saving your recovery codes in a secure location.