> For the complete documentation index, see [llms.txt](https://docs.inspector.dev/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.inspector.dev/security-and-access/two-factor-authentication.md).

# Two-factor authentication

### Overview

Two-factor authentication (2FA) provides better safety for your account and prevents unauthorized access to your data. MFA strengthens security by requiring two or more methods *(i.e. authentication factors)* to verify your identity.

Inspector allows users logging in with an email address and password to set 2FA as a requirement for logging into the user account.

### Authentication provider

Inspector supports login with a unique *time-based one-time password (TOTP)* that is generated for your user account by using the Google Authenticator mobile app.

You have to download the app on your smartphone before proceed.

### Enable 2FA

You can enable 2FA for your user account under your user account menu.

<figure><img src="/files/bxlFSnDk2SAvpFo7O3cQ" alt=""><figcaption><p>User menu to open MFA configuration page.</p></figcaption></figure>

Clicking the **Enable** button you will be redirected to the activaton screen.

<figure><img src="/files/zx6wkuBfSycefcp7Ju6v" alt=""><figcaption><p>Screen with QR code</p></figcaption></figure>

Scan the QR Code with the Google Authenticator app. If the new Inspector entry appears in your smartphone you can confirm the contol checkbox and click **Next**.

### Log-in with Two-factor authentication

Once you've enabled 2FA in your Inspector user account, the next time you login, you'll be prompted to enter your two-factor authentication (2FA) code.

* Use the **OTP code** generated by your Google Authenticator app to login to your Inspector account.

### Recovery

You must contact our [support team](mailto:support@inspector.dev) to regain access to your account in the event that you lose the device that generates your authentication codes.

### Disable 2FA

{% hint style="warning" %}
We strongly recommend that you do not disable MFA to avoid unauthorized access to your user account.
{% endhint %}

{% hint style="info" %}
**Effects of disabling 2FA:**

* Any devices setup with the QR code for your account will no longer be able to produce valid OTP tokens.
  {% endhint %}

You have to enter your current password to disable two-factor authentication.

<figure><img src="/files/ehx25gxrKW8zEU47RSaH" alt=""><figcaption><p>2FA disable screen.</p></figcaption></figure>

Type your password and click **Disable**.
