Two-factor authentication
Two-factor authentication (2FA) adds a second step at sign-in: a 6-digit code from an authenticator app on your phone. Even if someone has your password, they can’t get in without that code.
VertaFlow uses TOTP — the standard that works with Google Authenticator, 1Password, Authy, and any other authenticator app.
Before you start
Section titled “Before you start”You need a password on your account to enable 2FA. If you signed up with a magic link and never set one, set a password first in Security settings (the Password card), then come back here.
Turn on 2FA
Section titled “Turn on 2FA”- Open Settings → Security.
- In the Two-factor authentication card, click Enable two-factor.
- Enter your account password to confirm, then click Continue.
- VertaFlow shows a setup code (a
otpauth://URI). Add it to your authenticator app — scan it as a QR code or paste the code, whichever your app supports. - Save your backup codes. They’re shown once, on this screen. Store them somewhere safe — they’re how you get in if you lose your phone.
- Enter the current 6-digit code from your authenticator app and click Confirm code.
The card now shows On. From here on, every sign-in asks for a fresh code.
Turn off 2FA
Section titled “Turn off 2FA”In the same card, click Disable two-factor and confirm. Your account stays usable but is less protected — only do this if you’re switching devices or no longer want the second step.
If you lose your authenticator
Section titled “If you lose your authenticator”Use one of the backup codes you saved during setup. If you don’t have them, contact support — we can help you recover access after verifying your identity.
Related
Section titled “Related”- Set up passkeys — passwordless alternative
- Security settings
- Sign-in problems