Two-Factor Authentication
Add an extra layer of security to your account with 2FA.
What is 2FA?
Two-factor authentication requires two things to log in:
- Something you know (your password)
- Something you have (your phone/authenticator app)
Even if someone steals your password, they can't access your account without your authenticator.
Setting Up 2FA
Step 1: Enable 2FA
- Go to Account Settings > Security
- Click Enable Two-Factor Authentication
- Choose your method
Step 2: Scan QR Code
- Open your authenticator app
- Scan the QR code displayed
- Your account is added to the app
Step 3: Verify Code
- Enter the 6-digit code from your app
- Click Verify
- 2FA is now active
Step 4: Save Backup Codes
Important: Save your backup codes somewhere safe!
- You get 8 one-time backup codes
- Each code can only be used once
- Use if you lose access to your authenticator
- Store securely (password manager, printed, etc.)
Authenticator Apps
Compatible apps (TOTP-based):
| App | Platform |
|---|---|
| Google Authenticator | iOS, Android |
| Authy | iOS, Android, Desktop |
| Microsoft Authenticator | iOS, Android |
| 1Password | iOS, Android, Desktop |
| Bitwarden | iOS, Android, Desktop |
Any app that supports TOTP (Time-based One-Time Password) will work.
Logging In with 2FA
- Enter your email and password
- You'll be prompted for a verification code
- Open your authenticator app
- Enter the 6-digit code
- Click Verify to log in
TIP
Codes change every 30 seconds. If your code doesn't work, wait for a new one.
Using Backup Codes
If you can't access your authenticator:
- Click Use backup code on the login screen
- Enter one of your backup codes
- You're logged in
- That backup code is now used (can't use again)
Regenerating Backup Codes
If you've used most of your backup codes:
- Go to Account Settings > Security
- Click Regenerate Backup Codes
- Old codes are invalidated
- Save your new codes
Disabling 2FA
To turn off 2FA:
- Go to Account Settings > Security
- Enter your current 2FA code
- Click Disable Two-Factor Authentication
- Confirm the action
WARNING
Disabling 2FA makes your account less secure. Only disable if necessary.
Lost Authenticator Access
If you lose your phone or can't access your authenticator:
Option 1: Use Backup Code
Use one of your saved backup codes to log in.
Option 2: Contact Support
If you don't have backup codes:
- Contact support at support@pixlpay.com
- Verify your identity
- We'll help restore access
Prevention
- Keep backup codes in a safe place
- Use an authenticator with cloud backup (Authy)
- Set up on multiple devices if possible
Security Best Practices
Do
- Enable 2FA on all accounts
- Save backup codes securely
- Use a reputable authenticator app
- Keep your phone secure
Don't
- Share your backup codes
- Screenshot QR codes
- Use SMS-based 2FA if avoidable
- Ignore 2FA prompts
Troubleshooting
Code Not Working
- Check your device's time is correct
- Wait for the next code (they change every 30 seconds)
- Ensure you're using the right account
Lost Backup Codes
- Log in using your authenticator
- Generate new backup codes
- Save them securely this time
Authenticator App Lost
- Use a backup code to log in
- Disable 2FA
- Set up 2FA again with new device
- Save new backup codes