--- title: "Two-Factor Authentication (2FA)" description: "Enable 2FA on your 3DIMLI account for extra security. Set up authenticator app verification to protect your account." canonical_url: "https://support.3dimli.com/managing-your-dashboard/settings/security/2fa" md_url: "https://support.3dimli.com/managing-your-dashboard/settings/security/2fa.md" source: "docs/managing-your-dashboard/settings/security/2fa.md" x_aeo_version: "1.0" estimated_tokens: 1090 --- **Two-Factor Authentication (2FA)** means you need **two things** to log in: - **Something you know** → your password - **Something you have** → a one-time code from an authenticator app on your phone Even if someone steals or guesses your password, they still cannot log in without the code from your phone. On **3DIMLI**, 2FA uses **time-based one-time passwords (TOTP)** - 6-digit codes that refresh every ~30 seconds inside your authenticator app. ### Why Enabling 2FA Is Important #### **1. Protects Against Unauthorized Access** Even if someone gets your password through a data leak, weak password, or keylogger, they **still cannot log in** without the 6-digit code. This stops most account takeover attempts. #### **2. Keeps Purchases, Uploads & Earnings Safe** Your 3DIMLI account may contain: - Purchased files and licenses - Uploaded products, drafts, previews - Earnings, payout details, transaction history 2FA helps prevent unauthorized changes to payout info, product files, or account data. #### **3. Prevents Misuse Across Devices** If you're logged in on multiple devices, 2FA ensures **only you** can add new ones. A hacker trying to sign in from a new location will be blocked without the code. #### **4. Adds a Second Lock Beyond Passwords** Passwords are just one layer. 2FA acts like an **extra deadbolt**: - Password = front door key - 2FA code = additional lock An attacker must bypass both to access your account. --- ### How 2FA Setup Works on 3DIMLI #### **Step 1: Confirm/Add Your Password** ![3DIMLI Settings Security 2FA Step 1-1](https://media.3dimli.com/3DIMLI-Images/docs/Dashboard/3Dimli2FAStep1pt1.avif "2Factor Authenticator Step 1") ![3DIMLI Settings Security 2FA Step 1-2](https://media.3dimli.com/3DIMLI-Images/docs/Dashboard/3Dimli2FAStep1pt2.avif "2Factor Authenticator Step 1") When you click **“Setup 2-Factor Authentication”**, a modal appears asking you to enter or set a password. This prevents someone on an already logged-in device from enabling 2FA without your approval. - If correct → you continue - If wrong → an error appears #### **Step 2: Scan the QR Code** ![3DIMLI Settings Security 2FA Step 2](https://media.3dimli.com/3DIMLI-Images/docs/Dashboard/3Dimli2FAStep3.avif "O2Factor Authenticator Step 2") You will see: - A **QR code** - A **secret key** (backup option) Scanning the QR code connects your authenticator app with 3DIMLI. If the camera doesn’t work, enter the secret key manually. #### **Step 3: Enter the 6-Digit Code** Open your authenticator app: - Select the entry for **3DIMLI** - Enter the 6-digit TOTP code shown If you enter an expired or incorrect code, simply try again with the next one. #### **Step 4: Setup Complete** Once accepted, 2FA is fully enabled. Your future login flow becomes: 1. Enter email and password 2. Enter the 6-digit authenticator code If the code is wrong or missing, login is blocked. Some systems also offer features like: - **“Remember this device”** - **Backup/Recovery codes** If available on 3DIMLI, store recovery codes in a secure location. --- ### Authenticator Apps All these apps generate 6-digit offline TOTP codes: #### **1. Google Authenticator** Simple, widely supported TOTP generator. Cloud backup optional. #### **2. Authy** Supports multi-device sync and optional cloud backups. Useful if you switch phones often. #### **3. Microsoft Authenticator** Provides TOTP codes plus optional push approvals. Supports secure backup through your Microsoft account. #### **4. 1Password (Built-In Authenticator)** Password manager with TOTP support built in - keeps passwords and 2FA codes together securely. #### **5. FreeOTP (Open Source)** Free, open-source TOTP/HOTP authenticator created by Red Hat. --- ### Best Practices & Tips - Enable 2FA as soon as you begin storing valuable files or earnings. - **Never share** your 6-digit code with anyone - not even support. - Use a strong, unique password along with 2FA. - Save backup/recovery codes securely (password manager or printed copy). #### **When changing phones:** - Transfer or re-setup your authenticator before wiping your old device. #### **If you suspect account compromise:** - Change your password - Review and sign out of all active sessions - Ensure 2FA is enabled and working Enable 2FA for stronger protection. See [FAQ](/faq).