Two-Factor Authentication

Two-factor authentication (2FA) adds a second sign-in step using a code from an authenticator app — even if your password leaks, an attacker can't sign in without the code from your phone.

Enable 2FA

1. Go to Security in your dashboard.
2. Click Enable two-factor authentication.
3. Scan the QR code with an authenticator app (1Password, Authy, Google Authenticator, Microsoft Authenticator, etc.).
4. Enter the 6-digit code the app shows to confirm.
5. Save the backup codes somewhere safe. Each can be used once if you lose your authenticator.

Sign in with 2FA

After enabling, every sign-in asks for your authenticator code right after the password step. If you don't have your authenticator, click "Use a backup code" and enter one of the codes you saved.

Lost your authenticator AND backup codes

Email support@storra.xyz from the email address on your account. We'll verify ownership and reset your 2FA. This is intentionally slow to prevent account takeover.