Zum Hauptinhalt springen

Two-Factor Authentication

Two-factor authentication (2FA) adds a second step to sign-in: after entering your password, you enter a 6-digit code from an authenticator app. Even if someone gets your password, they cannot access your account without your phone.

What you need

Any TOTP authenticator app works:

  • Google Authenticator (iOS / Android)
  • Authy (iOS / Android / Desktop)
  • Microsoft Authenticator (iOS / Android)
  • Any other app that supports time-based one-time passwords (TOTP / RFC 6238)

Enable 2FA

  1. Go to SettingsSecurity.
  2. Under Two-factor authentication, click Set up 2FA.
  3. Open your authenticator app and scan the QR code shown on screen.
    If your app cannot scan, tap enter key manually and type the text code instead.
  4. Enter the 6-digit code your app displays to confirm the setup.
  5. You will see a list of recovery codes. Copy or write them down and store them somewhere safe — you will need one if you ever lose access to your authenticator app. Each code can only be used once.
  6. Check I've saved my recovery codes and click Enable 2FA.

2FA is now active on your account.

Google accounts

If you signed in with Google and have no Tebemo password, you will be asked to set a password before enabling 2FA. That password is only needed later if you want to disable 2FA — you can still sign in with Google as usual.

Sign in with 2FA

Once 2FA is enabled, every sign-in works like this:

  1. Enter your username and password as usual.
  2. You are redirected to a second screen asking for your 6-digit authenticator code.
  3. Open your authenticator app, find Tebemo, and enter the current code.
  4. Click Verify — you are signed in.

Codes refresh every 30 seconds. If the code is rejected, wait for the next one to appear and try again.

Recovery codes

If you do not have your phone, enter one of your saved recovery codes instead of the 6-digit code. Recovery codes are longer (e.g. a3f8-c91d-...) and each works exactly once.

Disable 2FA

  1. Go to SettingsSecurity.
  2. Under Two-factor authentication, click Disable 2FA.
  3. Enter your current password and a valid 6-digit code from your authenticator app.
  4. Click Disable 2FA to confirm.

2FA is removed from your account immediately.

Lost access to your authenticator app

If you no longer have your phone or the app, use a recovery code to sign in:

  1. On the 2FA verification screen, enter a recovery code in place of the 6-digit code.
  2. You are signed in. Go to SettingsSecurity and disable 2FA, then re-enable it with your new device.

If you have no recovery codes left and cannot access your authenticator app, contact support to recover your account.

Related pages

SecurityPassword, sessions, and account deletionProfileDisplay name, photo, and emailSubscriptionPlans and limits