Affiliate Disclosure: By buying the products we recommend, you help keep the lights on at MakeUseOf. Read more.
The best way to secure your Facebook account is to enable login approvals. Once enabled, you will need a login code every time you want to log into your account from a new device. This feature will protect your account from being hacked, even if your password is weak.
Note that Facebook can only deliver the login code to your mobile phone number. However, you can also use Code Generator on your Android phone or tablet to “manually” generate a code. That way you will always be able to log into Facebook, even when you can’t receive text messages.
Let us show you how to set up Login Approvals and Code Generator on your Android device.
Why Enable Login Approvals?
Login Approvals is an extra security layer that will make it harder for someone to hack your Facebook account. When they try to log into your account from a device that you haven’t previously authorized, they will need both your password and a login code.
Moreover, when someone attempts to log into your account from another computer — and if you don’t use Code Generator — you will indirectly be notified of this login attempt as you receive a security code in a text message.
Though you can always receive login alerts to your email address or on your Facebook account. You can enable the respective notifications under Account Settings > Security > Login Alerts in both your browser and the mobile app. We highly recommend enabling email notifications.
How to Enable Login Approvals
Login Approvals require a mobile phone number. First, you’ll need to navigate to Facebook in your browser and head to Mobile Settings under Settings > Mobile. Here, make sure that you have a current mobile phone number on record. You can add as many numbers as you like and we highly recommend that you add at least two.
Once you have updated your phone number, you can go ahead and enable Login Approvals. While this feature is available in the mobile app, it doesn’t seem to work reliably. Thus, open Facebook in your browser, go to Settings > Security > Login Approvals, and check Require a login code to access my account from unknown browsers.
After you have successfully enabled Login Approvals, be sure to keep your Mobile Settings up to date, always have an authorized device as a backup to log in and change your settings, and set an App Password for Facebook apps that are not eligible for Login Approvals.
You can also download backup codes for when you don’t have access to your phone. Go to Settings > Security > Login Approvals and click Get codes. This features is also available in the mobile app under Account Settings > Security > Login Approval Codes.
How to Set Up Code Generator
Until now, all steps could be completed in the browser. Code Generator, however, is a feature exclusive to the Facebook Android app. If you had the app installed all along, Code Generator might be available already. Otherwise, install and open the app (but think twice about installing Facebook mobile).
When you first log into the Facebook mobile app, you will need a security code to complete your login. After you log in with your password, Facebook will send you the code in a text message.
Inside the Facebook app, tap the menu button, scroll down until you see Code Generator, and tap Activate. Then return to Login Approvals on the Facebook website, select Set up Code Generator, and click Continue.
After you’ve successfully activated Code Generator on your Android device, you’ll find it listed as an option for login code delivery under Security Settings in your Facebook account. This is also where you can Remove and hence disable Code Generator. Obviously, we don’t recommend doing that.
The next time you want to access Facebook on a new device and cannot receive a text message — for example, if you don’t have a signal or you switched SIM cards — you can use Code Generator instead. Simply open your Facebook app, tap the three-line icon in the top left, scroll down, tap Code Generator, and long-tap the code to copy it to your Android clipboard.
Should you ever lose access to Facebook Code Generator (like if your phone was stolen), you can log into Facebook from a recognized device, log out on your phone, and remove Code Generator. Until you get your phone back, you can also set up a third-party app to generate codes.
You should also know how to recover your Facebook account login, should the need ever arise.
Has your Facebook account ever been hacked? How do you keep it hacker proof? Please share your thoughts in the comments!