Not sure if two-factor authentication is important? Reports of millions of Google accounts being compromised should convince you. Do it. Do it now.
When it comes to data you want to be secured, your email accounts are probably close to the top of the list. Though email is technically an unencrypted medium, the average hacker might not go to too much trouble to grab a single message — but they'd love a peek at your history full of password resets, not to mention getting potential access to your bank accounts or other private information.
Strong passwords can help, but to be as secure as possible, you want to enable two-step authentication.
What is two-step authentication?
Two-step authentication is the most prevalent way to secure your accounts: It asks you to authenticate that you are who you say you are by supplying not only your password but a unique code supplied from your phone or an external app. It ensures that those accessing your accounts have access to your physical devices as well as your virtual passwords. It makes a simple password crack or social engineering hack a lot more insufficient for actually accessing your personal data.
How to set up your Google account with two-step authentication
Google was one of the first companies to offer two-step authentication for its user accounts; the company even created an option for third parties who want to offer two-step support for its services called Google Authenticator. Companies like Facebook, Tumblr, and Dropbox all use Google's service, as does Google itself.
As such, Google's experience with two-step authentication makes it a remarkably simple process to set up. Here's what you need to do.
Visit Google's 2-Step Verification page and click on Get Started.
- Enter your Google email and password (or just your password, if you're already logged in to Google).
Click the Get Started button.
- Add a phone number that Google can send the six-digit verification code to. (For semi-obvious reasons, this shouldn't be your Google Voice number: If you use that phone number, you might end up locked out of your account.)
- Verify your phone number by entering in the six-digit code Google sent you.
- You may be asked to choose whether or not to add your current computer as a trusted device — select Yes if this is your own personal device, or choose No if it's a shared device.
Confirm that you wish to turn on two-step verification by clicking Turn On.
And you're set! Google will now send your phone a six-digit code for any app that uses Google's web interface to authenticate your account.
How to use Google Authenticator
If you don't want codes sent via text message, you can also enable Google Authenticator; this allows you to receive a randomly-generated code from programs like Authy or 1Password or Google's own authenticator.
You can use Google Authenticator for a slew of different services in addition to your Google Account; you just need to make sure they have code generation turned on. Each service has a slightly different way of enabling this, but in general, you should find it under the Security section of your preferences.
Here's the setup screen for your Google accounts:
- Under your account's security preferences, click Authenticator App.
- Select whether you are using Android or iPhone.
- Scan the QR code from your authenticator app. In this example, we use Authy.
- Give the account a name.
Now, every time you want to verify with 2FA, input the six digit verification code that shows up on the app. These codes expire after 30 seconds.
Do you have any questions about how to add 2-step verification to your Google accounts? Put them in the comments, and we'll help you out.
Updated June 2020: Updated with the latest steps for setting up 2FA on your Google account.
We may earn a commission for purchases using our links. Learn more.