What is two-factor authentication?

Two-factor authentication (often called 2FA or two-step verification) is a second lock on your account. Here is how to think about it: your password is the first key to your account. Two-factor authentication adds a second key — a temporary code that is sent to your phone every time you log in from a new device. Even if a scammer steals your password, they cannot get into your account without also having your phone. It is one of the most powerful security tools available and it is free. When you turn it on, the process works like this: you type your password as usual, and then a 6-digit code appears as a text message or a notification on your phone. You type that code and you are in. The code expires in 30 to 60 seconds so it cannot be reused. Apple calls this feature "two-factor authentication" and it is already on if you set up your Apple ID recently.

How to turn on two-factor authentication for your Apple ID

  1. Open Settings on your iPhone or iPad.
  2. Tap your name at the top.
  3. Tap "Sign-In & Security".
  4. Tap "Two-Factor Authentication".
  5. Follow the steps — Apple will send a code to your trusted phone number.

The 3-Second Rule

If you receive a verification code you did not ask for — do not share it with anyone. Someone is trying to get into your account.

Important Warning

Never read your verification code aloud to anyone on the phone. A real company will never call and ask for your code.

Learn More

Go deeper with our full lesson: Module 3: Passwords & Biometrics.

← Back to all Quick Answers