Two-Factor Authentication (2FA)

Two-factor authentication (2FA) adds a second layer of security to your account by requiring two different forms of identification: something you know (your password) and something you have (your phone or security key).

How 2FA Protects You

• Prevents unauthorized access even if your password is compromised
• Alerts you to login attempts in real-time
• Protects your trading data and sensitive information
• Required by many financial institutions and trading platforms
• Significantly reduces the risk of account takeover

When 2FA is Required

• Logging in from a new device or location
• Changing critical account settings
• Accessing sensitive financial data
• Connecting third-party integrations
• Exporting large amounts of data

Using an Authenticator App (Recommended)

1. Download an authenticator app (Google Authenticator, Authy, or Microsoft Authenticator)
2. Go to Account Settings → Security → Two-Factor Authentication
3. Click "Enable 2FA" and select "Authenticator App"
4. Scan the QR code with your authenticator app
5. Enter the 6-digit code from your app to verify
6. Save your backup codes in a secure location
7. Click "Confirm" to complete setup

Using SMS (Less Secure)

1. Go to Account Settings → Security → Two-Factor Authentication
2. Click "Enable 2FA" and select "SMS"
3. Enter your mobile phone number
4. Verify your number by entering the code sent via text
5. Save your backup codes
6. Click "Confirm" to complete setup

Using a Hardware Security Key (Most Secure)

1. Purchase a FIDO2-compatible security key (YubiKey, Titan, etc.)
2. Go to Account Settings → Security → Two-Factor Authentication
3. Click "Enable 2FA" and select "Security Key"
4. Insert your security key when prompted
5. Follow the on-screen instructions to register the key
6. Save your backup codes
7. Consider registering a backup key

Backup codes are one-time use codes that allow you to access your account if you lose access to your 2FA device. Each code can only be used once.

Storing Backup Codes Safely

• Print them and store in a secure physical location
• Save them in a password manager
• Store them in an encrypted file
• Never store them in plain text on your computer
• Don't share them with anyone

Using a Backup Code

1. Click "Use backup code" on the 2FA verification screen
2. Enter one of your backup codes
3. Click "Verify"
4. The code will be marked as used and cannot be reused
5. Set up a new 2FA method as soon as possible

Generating New Backup Codes

1. Go to Account Settings → Security → Two-Factor Authentication
2. Click "Generate New Backup Codes"
3. Your old codes will be invalidated
4. Save the new codes securely

Adding Multiple 2FA Methods

We recommend setting up multiple 2FA methods for redundancy. If you lose access to one method, you can still use another.

1. Go to Account Settings → Security → Two-Factor Authentication
2. Click "Add Another Method"
3. Choose your preferred method and follow the setup steps
4. Verify the new method

Removing a 2FA Method

1. Go to Account Settings → Security → Two-Factor Authentication
2. Find the method you want to remove
3. Click "Remove" next to that method
4. Confirm your password
5. Verify with another 2FA method if required

Changing Your Primary 2FA Method

1. Go to Account Settings → Security → Two-Factor Authentication
2. Click "Set as Primary" next to your preferred method
3. This method will be used by default for verification

Authenticator Code Not Working

• Check that your device's time is set to automatic/network time
• Ensure you're entering the current code (they expire every 30 seconds)
• Try removing and re-adding Ascentia in your authenticator app
• Use a backup code if the issue persists

Lost Access to 2FA Device

1. Use a backup code to log in
2. Set up a new 2FA method immediately
3. Generate new backup codes
4. If you don't have backup codes, contact support with proof of identity

Not Receiving SMS Codes

• Check that your phone number is correct in your account settings
• Ensure you have cellular service
• Check if SMS messages are being blocked
• Wait a few minutes and request a new code
• Try using an authenticator app instead

Security Key Not Recognized

• Ensure your browser supports WebAuthn (Chrome, Firefox, Edge, Safari)
• Try a different USB port
• Check that the key is properly inserted
• Update your browser to the latest version
• Try using a backup 2FA method

• Use authenticator apps: More secure than SMS and works without cellular service
• Set up multiple methods: Have a backup in case you lose access to your primary method
• Keep backup codes safe: Store them securely but accessibly
• Register multiple devices: Add your phone and tablet for convenience
• Update phone numbers: Keep your contact information current
• Don't disable 2FA: Keep it enabled even if it seems inconvenient
• Review trusted devices: Regularly check and remove old devices
• Be cautious with "Remember this device": Only use on personal devices

We strongly recommend keeping 2FA enabled for maximum account security. However, if you need to disable it:

1. Go to Account Settings → Security → Two-Factor Authentication
2. Click "Disable 2FA"
3. Verify your identity with your current 2FA method
4. Confirm your password
5. Click "Confirm Disable"

Warning: Disabling 2FA significantly reduces your account security and may limit access to certain features.