How to Secure Your Accounts With 2FA: Gmail, Outlook, and More
Two-Factor Authentication (2FA) is a hot topic, and for a good reason. 2FA provides an additional layer of security for your online account by requiring a second login token, on a separate device. A password for your password, in a sense.
2FA works differently depending on the online account you are using. 2FA also carries slightly different names in some places, too. So, here is your short guide to enabling 2FA, in its various guises, on a host of online accounts.
How Does 2FA Work?
Two-Factor Authentication works by locking your account with two separate “factors.” In this case, a factor is “something you know” (e.g. password), “something you have” (e.g. phone), or “something you are” (e.g. fingerprint). You have the best protection combing two of these factors.
If your account uses two locks of the same factor, you have two-step authentication. For instance, your password and an additional security question (think mother’s maiden name, first pet name, and so), are both “something you know.” While this isn’t bad, per se, full two-factor authentication is more secure.
Check out our article on the pros and cons of different 2FA methods for a more in-depth look at the system.
How to Set Up 2FA on Gmail and Google
Your Google accounts can use several different 2FA schemes, such is the search giant’s commitment to securing your accounts.
The first is through the newer Google Prompt system. Instead of sending a one-time code, you receive a Google Prompt on your separate device. You simply unlock your phone and tap Yes to unlock your account.
Head to your Google Account, select Security, and then under the Signing in to Google header select 2-Step Verification. You will have to sign into your account again using your current password. Then select Try It Now to send a Google Prompt message to your listed device.
Once you accept the Google Prompt, you will meet another screen asking if you want to turn on 2-Step Verification. (Some users may meet a screen asking them to confirm their mobile number using an SMS; do this, then continue.) Select Turn On.
Some users may prefer to use a different 2FA system. One such option is the Google Authenticator app. The Authenticator app generates a six-digit code for you to log into your account, but you must have your phone with you for the system to work.
Before starting the Authenticator app 2FA process, you must download the app to your phone.
Once you download the app, head back to your Google Account (as above), select Security, and the under the Signing in to Google header, select 2-Step Verification. You will have to sign into your account using your newly set up Google Prompt, but from there you will access the 2-Step Verification settings.
Scroll down and select the Authenticator app, then select the type of phone you have (Android or iPhone). A QR code will appear. Open the Authenticator app on your phone, select the + symbol to add a new email address, then select Scan a barcode. Use the app to scan the QR code on your screen and see that it instantaneously adds the account to the app.
Each time you log in to your Google Account, you must provide the six-digit Google Authenticator code.
If you don’t have the code, you will not access your account.
How to Set Up 2FA on Microsoft Outlook
In this instance, you are looking at Microsoft’s Outlook.com service, rather than the desktop Outlook client. The Outlook desktop client has other forms of security, such as password protecting your Outlook PST file . However, 2FA isn’t currently available for it.
To lock down your Outlook.com account, visit your Microsoft account page then select the Security tab, followed by More Security Options. Under the Two-step Verification header, select Turn on two-step verification, then hit Next to proceed.
Now, choose whether you want to use an app, phone number, or alternative email address to secure your account. In this case, choose An app because it is the most secure option and works even when your phone is offline.
Microsoft wants you to use its authenticator app. However, in this case, we’re going to use Google Authenticator. (We used Google Authenticator in the previous section, so it should already be on your phone.) Select your mobile operating system from the list, then open the Authenticator app, scan the QR code, then enter the six-digit code to confirm. Copy the recovery code before you hit Finish.
Note: There are other excellent 2FA authentication apps out there.
How to Set Up 2FA on Apple and iCloud
Apple’s 2FA is very Apple-centric. In that, you won’t be using the Google Authenticator app, or any other app for that matter. That said, the Apple 2FA process works very well and only takes a moment or two to set up.
The process for turning 2FA on is different for a Mac or an iDevice. Head to this short MakeUseOf guide to protecting your Apple account with 2FA for full details.
How to Set Up 2FA on Facebook
Locking up your Facebook account is as important as your email address these days.
To enable 2FA, head to your Facebook Security Settings page. Next, select Use two-factor authentication, then Get started. You have two options: Text message, or Authentication app. You can select whichever option suits you.
You can use the Google Authenticator app from the other sections in this article. Just scan the QR code and follow the Facebook instructions.
Alternatively, enter your phone number, wait for the activation code arrive and follow the Facebook instructions.
How to Set Up 2FA on Twitter
Twitter supports third-party authenticator apps, so you can use Google Authenticator to secure your account.
Head to your Twitter account settings, then under the Security header select Login Verification. You can turn on SMS 2F by entering your phone number and then entering the code. If your Twitter account isn’t already using SMS verification, you must turn this on before enabling a third-party authentication app.
Once you turn on Login Verification, head back to the same menu and select Review your login verification methods, then select Mobile security app > Set up. Scan the QR code using the Authenticator app and follow the Twitter instructions.
How to Set Up 2FA on Instagram
Instagram 2FA comes in two forms: an SMS code or using an authentication app. Instagram added the latter in 2018 to boost account security and set up is very easy.
In the Instagram app, head to Settings > Two-Factor Authentication, then select the 2FA method you prefer.
If you select “Authentication App,” the Instagram app will automatically detect your installed authentication app and send a login code. For instance, your Instagram account would automatically appear in the Google Authenticator app on your phone.
How to Set Up 2FA on Amazon
Your Amazon account is another that requires serious security. If someone accesses your Amazon account, they can spend as if they were you. (Amazon does have additional security checks for new delivery addresses, but you shouldn’t rely on that.)
Head to your Amazon Advanced Security Settings and select Get Started. You can use SMS or an authenticator app. If you choose the latter, scan the QR code using the Authenticator app and follow the Amazon instructions.
Two-Factor Authentication for Email Is Worth It
It takes a minute or two to set 2FA security up on all of your accounts. Of course, the accounts on this list aren’t exhaustive. But you now understand how the 2FA process works, why 2FA is essential, and where you might find the settings in your other online accounts.
Want to understand more about 2FA? Here’s why it is worth using an authenticator app instead of basic SMS 2FA !