How to Set Up Two-Factor Authentication (2FA)

Two-factor authentication adds a second lock to your accounts. Learn how to turn it on for Google, email, and banking apps.

In this guide (7 steps):

1.What is two-factor authentication?
2.Choose your second-step method
3.Set up 2FA on your Google account
4.Set up 2FA on your email account (Outlook / Hotmail)
5.Set up 2FA on your banking app
6.Save your backup codes somewhere safe
7.What to do when you get a code you didn't ask for

What is two-factor authentication?

~33s

When you log in to a website, you normally enter a username and password. Two-factor authentication (2FA) adds a second step — usually a short code sent to your phone or generated by an app. Even if someone steals your password, they still cannot get into your account without that second code. Think of it like a door with two locks: even if someone has a copy of the first key, they need the second key too.

Quick Tip

Most banks, email providers, and social media sites now offer 2FA for free. Turning it on takes about five minutes and can prevent most account break-ins.

Choose your second-step method

~40s

There are three common ways to receive your second code: **Text message (SMS):** A code is sent to your mobile phone. This is the easiest option for most people. **Authenticator app:** An app on your phone generates a fresh code every 30 seconds. This is more secure than text messages. Popular free apps include Google Authenticator and Microsoft Authenticator. **Backup codes:** A set of one-time codes you print out or save somewhere safe, used when your phone is unavailable. For most people starting out, text message codes are fine. An authenticator app is worth switching to once you feel comfortable.

Quick Tip

Start with text message codes. You can always switch to an authenticator app later — most services let you change your 2FA method at any time.

Set up 2FA on your Google account

~50s

Google is one of the most important accounts to protect because many other services let you sign in with Google. 1. Go to myaccount.google.com on your computer or phone. 2. Click "Security" in the left-hand menu. 3. Scroll to "How you sign in to Google" and click "2-Step Verification." 4. Click "Get started" and follow the steps. 5. Google will ask you to enter your password again to confirm it's you. 6. Choose your second step — "Text message or voice call" is the easiest starting point. 7. Enter your mobile phone number and click "Send." 8. Type in the 6-digit code that arrives by text and click "Next." 9. Click "Turn On" to activate 2-step verification. From now on, when you sign in on a new device, Google will send a code to your phone.

Warning

Make sure Google has your current mobile phone number before you start. If your number has changed, update it under "Personal info" first.

Set up 2FA on your email account (Outlook / Hotmail)

~44s

If you use a Microsoft email account (Outlook, Hotmail, or Live), here is how to add two-factor authentication: 1. Go to account.microsoft.com and sign in. 2. Click "Security" in the top menu. 3. Click "Advanced security options." 4. Under "Two-step verification," click "Turn on." 5. Follow the on-screen steps — Microsoft calls this "Two-step verification." 6. Choose "Use an app" for an authenticator app, or "Use email or phone" for a text message code. 7. Follow the prompts to confirm your phone number or set up the app. For other email providers (Yahoo, Apple Mail), the steps are similar — look for "Security" or "Account settings" and search for "two-step" or "two-factor."

Quick Tip

If you use Apple's iCloud email, go to appleid.apple.com, sign in, click "Password & Security," and turn on "Two-Factor Authentication" from there.

Set up 2FA on your banking app

~48s

Most UK banks already require two-factor authentication by law — it's called "Strong Customer Authentication" (SCA). You may already be using it without realising. If your bank sends you a text code or asks you to approve payments in their app, that is 2FA already working. If you want to check or strengthen your settings: 1. Open your banking app. 2. Go to Settings (usually a gear icon or your profile photo). 3. Look for "Security," "Login settings," or "Two-step verification." 4. Follow the prompts to enable or update your settings. If you are unsure, call the number on the back of your bank card and ask a member of staff to walk you through it.

Warning

Your bank will never ask for your full PIN or full password over the phone or by text. If you receive a message asking for these, do not share them — contact your bank directly.

Save your backup codes somewhere safe

~45s

Most services offer "backup codes" when you set up 2FA. These are one-time codes you can use if your phone is lost, broken, or unavailable. **How to save them safely:** - Print them out and keep the paper in a safe, private place — not your wallet. - Write them in a notebook that you keep at home. - Save them in a password manager if you use one. **How to find your backup codes later:** - For Google: go to myaccount.google.com → Security → 2-Step VerificationBackup codes. - For Microsoft: go to account.microsoft.com → SecurityAdvanced security options. Never share backup codes with anyone, and never send them by text or email.

Quick Tip

Treat backup codes like spare house keys. Keep them somewhere safe but accessible — you'll need them if your phone is ever lost or replaced.

What to do when you get a code you didn't ask for

~55s

If you receive a two-factor code on your phone but you did not try to log in anywhere, this is a warning sign. It could mean: - Someone knows your password and is trying to log in to your account. - You accidentally clicked a "forgot password" link earlier. **What to do:** 1. Do not share the code with anyone — not even someone who says they are from your bank or Google. 2. Log in to your account immediately (from a trusted device) and change your password. 3. Check your account for any activity you do not recognize. 4. If it is your bank, call the number on the back of your card straight away. A real company will never call you and ask for the code that was just sent to your phone.

Warning

If someone calls you and says they need the code that was just sent to your phone, hang up immediately. This is always a scam. No legitimate company will ever ask for your 2FA code.

You Did It!

You've completed: How to Set Up Two-Factor Authentication (2FA)

Need more help? Get Expert Help from a TekSure Tech

Rate this guide

How helpful was this guide?

2fa

security

accounts

google

banking

beginner