Set up two-factor authentication (2FA)
Two-factor authentication (2FA) adds an extra layer of protection and significantly decreases the risk of unauthorized access and system breaches. The 2FA process requires you to provide a unique verification code—a one-time password (OTP)—other than your email ID and password combination to log in to the Global Developer Dashboard. The verification code is available from an authenticator app that you need to download on your mobile device, such as a mobile phone or tablet.
NOTE
Two-factor authentication (2FA) is required for all users to access the Global Developer Dashboard. The procedures in this topic refer to common terms used in the Google Authenticator app.
Terminology
The following information can help you understand, set up, and use 2FA.
| Term | Description |
|---|---|
| Authenticator app | Mobile or desktop application that generates time-based or counter-based one-time passwords (OTPs) for secure two-factor authentication (2FA). You can download an authentication app from the relevant app store. Popular authenticator apps include Google Authenticator and Microsoft Authenticator. |
| Two-factor authentication (2FA) | A security process that requires two different forms of identification to verify a user's identity. It typically combines something you know, such as a password, with something you have, such as a mobile device. |
| Quick Response (QR) code | Type of two-dimensional barcode that stores data in a pattern of black and white squares. You can scan the QR code with a camera to quickly access information like site links, contact details, authentication keys, or a one-time password (OTP) for account verification. The QR code typically expires after a short period, usually around 5 minutes. |
| Text code | Alphanumeric secret key that you enter manually into an authenticator app to generate an OTP for account verification. The text code does not expire, but the OTP generated from it is time-based and usually expires every 30 seconds. |
| Verification code or OTP | Time-based OTP generated after you scan a QR code or enter a text code in your authenticator app. You need to enter this 6-digit OTP to verify your identity when logging into the Global Developer Dashboard. The OTP usually expires every 30 seconds. |
| Recovery codes | Alphanumeric backup verification codes generated when you add a new account to your authenticator app. Recovery codes let you access your account if you do not have your device. After you use a recovery code to log in, that code becomes inactive. You can get a new set of 10 backup codes whenever you want. When you create a new set of recovery codes, the prior set automatically becomes inactive. |
Prerequisites
- Use a mobile device with at least one trusted phone number on file where you can receive verification codes.
- Download an authenticator app, such as Google Authenticator, to your Android or iOS mobile device.
- Sign up for your global developer account.
Set up two-factor authentication (2FA)
You need to set up two-factor authentication (2FA):
- If you are logging in for the first time.
- If you are logging in and your previously set up two-factor authentication is inactive or not available for some reason.
- Log in to the global developer platform. The Set up two-factor authentication to continue pop-up appears.
Set up two-factor authentication to continue pop-up
- Click Set Up. The Open your authenticator app pop-up appears.
- Do one of the following to add your account to your authenticator app and generate a time-based one-time password (OTP):
Use a QR code
a) In your authenticator app, tap the + icon and then tap Scan a QR code.
b) Point your mobile device camera at the QR code in the pop-up. The authenticator app scans the QR code, adds the developer account, and generates a 6-digit OTP to log in to the dashboard.
c) In Step 2, enter the 6-digit OTP from your authenticator app in the verification code fields.
Open your authenticator app pop-up: QR code
Important: Scan the QR code with your authenticator app within 5 minutes of when it displays on your computer screen. If the displayed QR code expires, click the Refresh the code and try again link for a new QR code.
Refresh the code and try again message
Use a text code
a) If you cannot scan the QR code, click the enter a text code instead link. A set of 6 alphanumeric text blocks displays in the pop-up.
b) In your authenticator app, tap the + icon and then tap Enter a setup key.
c) Enter an account name to identify your developer account in the authenticator app.
d) In the Your Key field, enter the alphanumeric text block without any spaces, and then click Add. The authenticator app adds the developer account and generates a 6-digit OTP to log in to the dashboard.
e) In Step 2, enter the 6-digit OTP from your authenticator app in the verification code fields.
Open your authenticator app pop-up: Text code
- Click Next. A Successfully enabled pop-up appears.
Successfully enabled pop-up
- Click Download recovery codes. A text (.txt) file is saved on your device. If you cannot access your authenticator app, you can use these alphanumeric recovery codes.
Recovery backup codes
-
Click Done. After the 2FA setup is complete, the Global Developer Dashboard appears.
-
To log in to the Global Developer Dashboard, enter your credentials, and in the Enter your verification code pop-up, do one of the following:
-
Use the authenticator app on your mobile device to generate a 6-digit OTP for your added developer account. Enter the OTP to access the Global Developer Dashboard.
-
Enter one of the downloaded alphanumeric recovery codes.
Enter your verification code pop-up
After the verification code is authenticated you are logged into your global developer account on the Global Developer Dashboard.
-
Manage two-factor authentication settings
-
Log in to the global developer platform. The Global Developer Dashboard appears.
-
Click the user profile icon and click User Settings.
Global Developer Dashboard: User Settings
The User Settings page appears.
-
Select the Two-Factor Authentication tab.
Global Developer Dashboard: User Settings > Two-factor authentication
The Two-Factor Authentication page displays the following two settings as active and on:
- Two-factor authentication is on.
- Authenticator app is On.
From here, you can:
- Download recovery codes for your developer account login.
- Set up another authenticator app after you download it on your mobile device.
Note: If you set up another authenticator app, the codes you previously set up will not work.
Updated 13 days ago