> For the complete documentation index, see [llms.txt](https://legacy-docs.usesmileid.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://legacy-docs.usesmileid.com/further-reading/securing-your-account-with-two-factor-authentication-2fa.md).

# Securing your account with two-factor authentication (2FA)

Two-factor authentication (2FA) adds an additional factor to your login requirements. It is an essential feature that better secures your portal access because it immediately neutralizes the risks associated with a compromised password. If your Smile ID portal password has been compromised, that is no longer enough to give an intruder access; without the second factor, the password alone is useless.

As the account owner, you can require two-factor authentication as a login requirement for all your users. When activated, your users will be prompted to set up 2FA when next they attempt to login. Smile ID recommends you activate two-factor authentication as it better secures the portal.

## **How to require two-factor authentication organisation wide on the Smile ID portal**

Activating 2FA for your users is as easy as following 3 steps the below:

1. Go to [Account Settings](https://portal.usesmileid.com/partner/account_settings)
2. Click on [Manage](https://portal.usesmileid.com/settings/team) Team
3. Check the “Require two-factor authentication (2FA) for everyone in this team” box

To set up their 2FA, your users can follow the instructions below.

## Setting up two-factor authentication as a user

If two-factor authentication (2FA) has been required by the account owner in your organisation, you will be required to setup 2FA when next you attempt to login. To setup 2FA, you will need a time-based one-time password (TOTP) application. A TOTP application automatically generates an authentication code that changes after a period of time. We recommend using cloud-based TOTP apps such as:

* [1Password](https://support.1password.com/one-time-passwords/)
* [Authy](https://authy.com/features/setup/)
* [LastPass Authenticator](https://www.lastpass.com/solutions/authentication)
* [Microsoft Authenticator](https://www.microsoft.com/en-us/security/mobile-authenticator-app)

We also support non cloud-based TOTP such as [Google Authenticator](https://support.google.com/accounts/answer/1066447?hl=en\&co=GENIE.Platform%3DAndroid).

### 2FA setup steps

1. Download a TOTP app
2. Login to [your account](https://portal.usesmileid.com/) with your email address and password\
   \
   ![](/files/qBexN6BIgvDSMjXBYRti)
3. Click **Enable** under "Set Up Two-Factor Authentication"\
   \
   ![](/files/XKtceYrfx1nm0uoxt9yj)
4. After clicking Enable, you should see a QR code and some instructions. You can do one of the following:
   * Scan the QR code with the TOTP app you installed in step 1. After scanning, the app displays a six-digit code you can enter on the portal
   * If you can't scan the QR code, you can copy the code written on the screen manually into the TOTP app instead\
     \
     ![](/files/vWR7TPRnvOVKdwWrLMXI)
5. The TOTP app saves your Smile ID account and generates a new authentication code every few seconds. Type the six-digit code the TOTP app generated in the "Enter OTP" field and click **Submit OTP**\
   \
   ![](/files/55upQM86GRoljBTrsd1J)
6. Once you have submitted the OTP, you should see your 10 backup codes. Click **Copy Backup Codes** and paste in a secure location because the backup codes can help you get back into your account if you lose access to your TOTP app\
   \
   ![](/files/dMXCWz2DFvBkczKMX9vH)
7. After saving the backup codes in a secure location, click on **Done** to complete setting up the 2FA. You should be automatically logged in to the portal


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter:

```
GET https://legacy-docs.usesmileid.com/further-reading/securing-your-account-with-two-factor-authentication-2fa.md?ask=<question>&goal=<endgoal>
```

`ask` is the immediate question: it should be specific, self-contained, and written in natural language.
`goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal.

The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.
