Enabling/Disabling Two-Factor Authentication (2FA)

Kialo supports Two-Factor Authentication (2FA), providing an extra layer of security for your account. When you log in, if 2FA is enabled, you will be required to generate a code in your authenticator app in addition to your password.

Important: Store your backup codes somewhere safe, as they are the only way to recover your account in case your 2FA device (e.g., your phone) is lost. The best practice is to print them out or store them on a USB drive, rather than saving them on the same device you use to access Kialo.

How to Enable Two-Factor Authentication

To enable 2FA:

  1. Navigate to your User Settings page.
  2. Scroll down to the ‘Two-Factor Authentication’ section and click ‘Enable Two-Factor Authentication’.
  3. Enter your current password and click ‘Continue’. 
  4. Scan the QR code in your 2FA app. 
  5. Underneath the QR code, enter the verification code which appears in your app and click ‘Continue’.
  6. Your backup codes appear. Save these somewhere safe. 
  7. Click ‘Finish’.

2FA is now enabled for your account. The next time you log in, you are required to enter the code generated in your app after entering your password.

How to Disable Two-Factor Authentication

To disable 2FA:

  1. Navigate to your User Settings page.
  2. Scroll down to the ‘Two-Factor Authentication’ section and click ‘Disable Two-Factor Authentication’.
  3. Enter your current password and click ‘Continue’. 
  4. If you are certain you want to disable 2FA, click ‘Disable’.

I’ve Lost My Authentication Device

If you’ve lost the device you use to generate your 2FA code, you can use a backup code to log in instead.

  1. Attempt to log in using your username/email and password.
  2. When asked for your 2FA code, click ‘Authenticator Lost’. 
  3. Enter one of your backup codes (each backup code is 12 characters long) and click ‘Submit’.

Note: Using a backup code does not disable 2FA on your account – if you have permanently lost access to your authentication device, make sure to follow the steps in the section above to disable 2FA as well.

Was this article helpful?

Back to top