Setting Up Two-Factor Authentication (2FA)

Two-factor authentication adds an extra layer of security. Even if someone gets your password, they can't access your account without your authenticator app.

How to Enable 2FA

1. Go to Settings → Security
2. Click Enable 2FA
3. Scan the QR code with your authenticator app
4. Enter the 6-digit verification code
5. Save your recovery codes somewhere safe

That's it. Your account is now protected.

Supported Authenticator Apps

Any TOTP-compatible app works:

If your app supports scanning QR codes and generates 6-digit time-based codes, it works with Illumate UI.

Recovery Codes

When you enable 2FA, you'll receive one-time recovery codes. These are your backup if you lose access to your authenticator device.

Store them securely:

Each recovery code can only be used once. Once used, it's gone.

Logging In with 2FA

After entering your email and password, you'll see a second step asking for the 6-digit code from your authenticator app. Enter the current code and you're in.

Disabling 2FA

If you need to turn it off:
1. Go to Settings → Security
2. Click Disable 2FA
3. Enter a current authenticator code to confirm

⚠️ Lost Your Authenticator Device?

If you've lost access to your authenticator app and still have your recovery codes, use one to log in. Then immediately disable 2FA and set it up again with your new device.

If you've lost both your authenticator and recovery codes, contact us for account recovery. We'll verify your identity before restoring access.

This is why saving recovery codes matters. Don't skip this step.

---

Next: Managing active sessions