Cyber Shorts: Setting up Two-Factor Authentication (2FA)

To combat cyber criminals, you should use two-factor authentication so that attackers must break through (at least) two stages of security to access your account. The below is a guide to setting up Two-Factor Authentication on some of the most common platforms.

Microsoft

Microsoft can send a security code to your email address or phone number, which must be entered in addition to your password before access to your account is granted. They also offer the Microsoft Authenticator app, which permits you to use a fingerprint, face recognition, or a PIN for security.

To set up 2-FA on your Microsoft account, please follow the steps below:

  1. Go to the Security basics page and sign in with your Microsoft account.
  2. Select More security options.
  3. Under Two-step verification, choose Set up two-step verification to turn it on, or choose Turn off two-step verification to turn it off.
  4. Follow the instructions.

As part of setting up this account, you’ll be given a QR code to scan with your device; this is one way we ensure you are in physical possession of the device you are installing the Authenticator app to.

For further information, please see Microsoft’s website.

Google

Upon entering your password, Google can text you a message with a code to be entered before access to your account is granted. Alternatively, you can opt to use a ‘prompt’ alert on your device, such as your phone, so that you can tap instead of typing in a code.

Google also support physical Security Keys which you must physically connect to your device upon logging in, or the Google Authenticator app which you can use to generate a code when you don’t have an internet connection.

To set up 2-FA on your Google account, please follow the steps below:

  1. Open your Google Account.
  2. In the navigation panel, select Security.
  3. Under “Signing in to Google,” select 2-Step Verification and then Get started.
  4. Follow the on-screen steps.

For further information, please see Google’s website.

Facebook

Facebook can text a security code to your phone number, which must be entered in addition to your password before access to your account is granted. Facebook also support physical Security Keys which physically connect to your device upon logging in, and third-party authentication apps such as Google Authenticator or LastPass, which you can use to generate a code when you don’t have an internet connection.

To set up 2-FA on your Facebook account, please follow the steps below:

  1. Go to your Security and login settings.
  2. Scroll down to Use two-factor authentication and click Edit.
  3. Choose the security method that you want to add and follow the on-screen instructions.

For further information, please see Facebook’s website.

Apple ID

Upon entering your password, Apple can text you a message with a code to be entered before access to your account is granted. To use two-factor authentication with Apple, you need at least one trusted phone number on file (with an Apple device) where you can receive verification codes.

To set up 2-FA on your Apple account, please follow the steps below:

  • For your iPhone, iPad or iPod touch: Go to Settings > your name > Password & Security. Tap Turn On Two-Factor Authentication. Then tap Continue and follow the onscreen instructions.
  • For your Mac: Choose Apple menu > System Settings (or System Preferences), then click your name (or Apple ID). Click Password & Security. Next to Two-Factor Authentication, click Turn On and follow the onscreen instructions.
  • On the web: Go to appleid.apple.com and sign in with your Apple ID. Answer your security questions, then tap Continue. Tap Continue when you see a prompt to upgrade account security. Then tap Upgrade Account Security and follow the onscreen instructions.

For further information, please see Apple’s website..