Skip to Content
Account ManagementTwo-Factor Authentication

Two-Factor Authentication

Two-factor authentication (2FA) adds an extra layer of security to your Detectify account by requiring a verification code in addition to your password when logging in.

How It Works

When 2FA is enabled, logging in requires:

  1. Your email and password (something you know)
  2. A time-based one-time password (TOTP) from an authenticator app (something you have)

Even if your password is compromised, an attacker cannot access your account without the second factor.

Supported Authenticator Apps

Detectify 2FA works with any TOTP-compatible authenticator app, including:

  • Google Authenticator
  • Authy
  • Microsoft Authenticator
  • 1Password
  • Bitwarden

Enabling 2FA

  1. Log in to Detectify and navigate to Settings > Security > Two-Factor Authentication.
  2. Click Enable 2FA.
  3. Scan the displayed QR code with your authenticator app, or manually enter the setup key.
  4. Enter the 6-digit verification code from your authenticator app to confirm setup.
  5. Save the recovery codes displayed on screen. Store them in a secure location. These codes can be used to access your account if you lose access to your authenticator app.

Using 2FA

After enabling 2FA, each login requires:

  1. Enter your email and password as usual.
  2. When prompted, enter the 6-digit code from your authenticator app.
  3. The code refreshes every 30 seconds. Use the current code displayed in your app.

Recovery Codes

Recovery codes are one-time use codes that allow you to log in if you lose access to your authenticator app. Each code can only be used once.

  • Store recovery codes securely — Save them in a password manager or other secure location
  • Generate new codes if you have used most of them by navigating to the 2FA settings page

Disabling 2FA

To disable 2FA:

  1. Navigate to Settings > Security > Two-Factor Authentication.
  2. Click Disable 2FA.
  3. Enter a verification code from your authenticator app to confirm.

2FA and SSO

If your organization uses SAML SSO with your own identity provider, 2FA is typically managed at the identity provider level rather than in Detectify. When SSO is enforced, the Detectify 2FA setting is not applicable since authentication is handled entirely by your IdP.

Last updated on
Single Sign-OnBilling