Using two-factor authentication in webmail

Two-factor authentication (2FA) is a security measure that requires two separate factors to gain access—something you know and something you have. While it’s still essential to have a strong, unique password to make it harder to crack (‘something you know’), 2FA also incorporates a randomly generated six-digit code that gets sent to or synced with a device you trust, like your personal cell phone.

What do I need?

There are a few different ways to get the 2FA code. One of the most common is to use your smartphone with an authenticator app or to have the code sent via text. You can also use password management applications from your computer, like 1Password, to add a 2FA code. All options have pros and cons, but some are more severe. For example, the authenticator app would need to be disabled or replaced before resetting your phone, but in general, an authenticator app is considered more secure than a text message code, which can be diverted to a different device.

Although there are many different authenticator apps that you can use, some authenticator apps that we recommend are:

Back to top

How do I enable 2FA on my email account?

Using a Google authenticator

  1. Log in to your webmail.
    Webmail_login.png
  2. Select Settings from the sidebar.
  3. From the left-hand menu, select Password, then Two-factor authentication.
    Two-Factor_Authentication.png

  4. Choose between setting up 2FA with an authenticator or with SMS text messaging.
    Choose_google_or_SMS.png

  5. Select Enable with Google Authenticator, and you will be asked to re-enter your password.
    Note: Most authenticator apps operate using the same programming principle (TTOP) and can be used for 2FA.
    Enter_your_password__Google_.png
  6. Scan the QR code and enter the six-digit code using your Google Authenticator.
    Scan_your_QR_code_or_enter_in_the_URL.png
  7. You will be automatically logged out, and when you log back in, two-factor authentication will be required. 2FA now protects your account.

Back to top 

Using SMS messaging

  1. Log in to your webmail.
  2. Select Settings from the sidebar
  3. From the left-hand menu, select Password, then Two-factor authentication.
    Two-Factor_Authentication.png

  4. Choose between setting up 2FA with an authenticator or with SMS text messaging.
    Choose_google_or_SMS.png

  5. Select Enable with SMS, and you will be asked to re-enter your email password and phone number.
  6. Once you’ve received the SMS, enter in the six-digit code.
  7. You will be automatically logged out, and when you log back in, two-factor authentication will be required. 2FA now protects your account.

Back to top 

Logging in to Webmail with 2FA enabled

  1. Navigate to your webmail login.
    Webmail_login.png
  2. Enter your email address and password.
  3. Once 2FA is enabled, you’ll be prompted for the 2FA login token before being allowed access to your email.
    Note: When 2FA is active on an email, this will prevent password updates. Updated passwords when 2FA is active will not work until two-factor authentication is disabled again.
    Two-factor_login.png

Back to top 

Disabling 2FA

  1. Log in to your webmail.
  2. Select Settings from the sidebar.
  3. From the left-hand menu, select Password, then Two-factor authentication.
    Two-Factor_Authentication.png

  4. Select Disable.
    Disable_2fa.png
  5. Enter your current password and select Submit.
    Enter_password_to_disable.png
  6. Enter your verification token from your SMS or Google Authenticator and click Submit.
    Enter_token_to_disable.png
  7. A confirmation message will appear in the lower corner, and you can continue without 2FA enabled or set up a new 2FA device.

Back to top

Was this article helpful? If not please submit a request here

How helpful was this article?