Back to Documentation
Security
Two-Factor Authentication
Add an extra layer of security to your Berican Labs account with 2FA. Protect your sites from unauthorized access.
1Why Use 2FA
Two-factor authentication protects your account even if your password is compromised:
- Requires something you know (password)
- Plus something you have (phone/security key)
- Blocks 99.9% of automated attacks
- Required for team admin accounts
2Enable 2FA
Set up two-factor authentication:
- Go to Account Settings > Security
- Click "Enable Two-Factor Authentication"
- Choose your method:
- Authenticator app (recommended)
- SMS (less secure)
- Scan the QR code with your app
- Enter the verification code
- Save your backup codes
3Authenticator Apps
Recommended authenticator apps:
Google Authenticator
Authy
1Password
Microsoft Authenticator
Any TOTP-compatible app will work.
4Backup Codes
Backup codes let you access your account if you lose your phone:
- You get 10 single-use codes when enabling 2FA
- Store them in a safe place (password manager, printed copy)
- Each code can only be used once
- Generate new codes in Account Settings > Security
Important: If you lose your backup codes and phone, you'll need to contact support with ID verification to recover your account.
5Team 2FA Requirements
For teams, you can require 2FA for all members:
- Go to Team Settings > Security
- Enable "Require 2FA for all members"
- Set a grace period for existing members
- Members without 2FA will be prompted on next login
Admin and Owner roles always require 2FA.