Skip to main content

MFA Setup

Multi-Factor Authentication (MFA) adds an extra layer of security by requiring a time-based one-time password (TOTP) in addition to your password.

Enable MFA

Navigate to Security in the sidebar.

Scroll to the Two-Factor Authentication section and click Enable MFA.

Step 1: Scan the QR Code

A Set up MFA panel appears with a QR code. Scan it with your authenticator app (Google Authenticator, Authy, 1Password, etc.).

tip

Can't scan the QR code? Click the manual entry text below the code to reveal the secret key. Enter it manually in your authenticator app.

Step 2: Enter Verification Code

Enter the 6-digit code from your authenticator app in the Verification Code field and click Enable MFA.

Step 3: Save Recovery Codes

After verification, a Recovery Codes panel appears with your backup codes displayed in a two-column grid. These are single-use codes for signing in if you lose access to your authenticator app.

  1. Click Copy all to copy all codes to your clipboard.
  2. Store them in a secure location (password manager, encrypted file, or printed copy).
  3. Click Done to finish setup.
warning

Recovery codes are only shown once. If you lose them and your authenticator app, you'll need an administrator to reset your MFA.

MFA Status

Once enabled, the Two-Factor Authentication section shows:

  • MFA is enabled (green indicator)
  • Enabled on — The date MFA was activated
  • Recovery codes remaining — How many unused codes you have left

Disable MFA

To disable MFA:

  1. Navigate to Security in the sidebar.
  2. In the Two-Factor Authentication section, click Disable MFA.
  3. Enter your current 6-digit TOTP code from your authenticator app.
  4. Click Confirm Disable.
info

If your organization requires MFA, you cannot disable it. Contact your administrator if you need to change this policy.

Login with MFA

After enabling MFA, signing in requires an additional step:

  1. Enter your organization slug, email, and password as usual.
  2. A Two-factor authentication screen appears.
  3. Enter the 6-digit Code from your authenticator app (or a recovery code).
  4. Click Verify.

Next Steps

API Reference: For programmatic access, see MFA Setup.