Lesson 1Lesson 2Lesson 3Lesson 4Lesson 5Lesson 6

Two-Factor Authentication Explained

A strong password is important, but sometimes a password alone is not enough.

Passwords can be leaked, guessed, reused, stolen by phishing, or typed into a fake login page by accident.

That is why many accounts offer something called two-factor authentication, often shortened to 2FA.

What does 2FA mean?

Two-factor authentication means you need two things to log in:

Think of it like your front door. A password is the key. 2FA adds a second lock.

If someone steals your password, they still may not be able to log in because they also need the second step.

This is especially important for your email, password manager, social media, banking, cloud storage and work accounts.

An authenticator app creates a short code that changes every few seconds.

This is usually a good option for beginners because it is free and works on many services.

Some services send a notification to your phone asking if you are trying to log in.

This can be convenient, but be careful: only approve login requests that you started yourself.

Some websites send a code by text message.

SMS is not the strongest form of 2FA, but it is still better than having no second step at all.

A physical security key, such as a YubiKey, is one of the strongest options.

But it costs money and needs a little more setup. For beginners, it is good to know it exists, but you do not need to start there.

When you enable 2FA, many services give you recovery codes.

These codes are important. They can help you get back into your account if you lose your phone or authenticator app.

Save them somewhere safe. Do not ignore them.

What you learned: 2FA adds a second step to your login. It gives your accounts much stronger protection if a password is stolen.