Two-factor authentication
Two-factor authentication (2FA / MFA) adds an extra layer of security to your account. When enabled, you need both your password and a one-time code from an authenticator app to sign in.
Setting up 2FA for your account
Go to Settings → Security
Navigate to Settings → Security in the sidebar.
Click Enable two-factor authentication
A QR code appears. Scan it with an authenticator app such as Google Authenticator, Authy, or 1Password.
Enter the verification code
Enter the 6-digit code from your authenticator app to confirm the setup.
Save your recovery codes
Store your recovery codes somewhere safe. These let you regain access if you lose your authenticator device.
Org-wide 2FA enforcement
Admins can enforce 2FA for all workspace members. Go to Settings → Security and toggle Require two-factor authentication. When enforced, members who have not set up 2FA are prompted to do so on their next sign-in and cannot access the workspace until they complete setup.
Resetting a member's 2FA
If a team member is locked out because they lost access to their authenticator, an admin can reset their 2FA from the People page. Click the member's row and select Reset MFA. The member can then set up 2FA again on their next sign-in.