What is Two-Factor Authentication?

Two-factor authentication (2FA) adds a second layer of security to your account. After entering your password, you'll also need a 6-digit code from an authenticator app on your phone. This means even if someone learns your password, they can't access your account without your phone.

2FA is available to all account types (Tradesmen and Company) on every plan, including Free.

Before You Start

You'll need an authenticator app installed on your phone. We recommend any of these free apps:

  • Google Authenticator — iOS & Android
  • Authy by Twilio — iOS & Android (supports cloud backup)
  • Microsoft Authenticator — iOS & Android
  • 1Password — iOS & Android (built-in TOTP support)
  • Apple Passwords — Built into iOS 15+ and macOS Monterey+
How to Enable 2FA
  1. Go to Settings → Security (or visit /settings/security).
  2. Click "Set Up Two-Factor Authentication".
  3. A QR code will appear on screen. Open your authenticator app and scan the QR code. If you can't scan it, click the "Setup key" link to enter the code manually.
  4. Your authenticator app will now show a 6-digit code that refreshes every 30 seconds.
  5. Enter the current 6-digit code in the verification field and click "Verify & Enable".
Recovery Codes — Save These!

After enabling 2FA, you'll be shown 10 one-time recovery codes. These are your emergency backup if you ever lose access to your authenticator app (e.g. lost phone, factory reset).

Important: Recovery codes are shown only once. Copy or download them immediately and store them in a safe place like a password manager.
  • Each recovery code can only be used once.
  • When you're running low (2 or fewer remaining), we'll show a warning.
  • You can regenerate new codes at any time from Settings → Security → Regenerate Recovery Codes (requires a current authenticator code). This invalidates all previous codes.
Signing In With 2FA
  1. Enter your email and password as usual.
  2. You'll be prompted for a 6-digit code.
  3. Open your authenticator app and enter the current code. You have 10 minutes to complete this step.
  4. If you don't have your authenticator app, enter one of your recovery codes instead.
How to Disable 2FA
  1. Go to Settings → Security.
  2. Expand "Disable Two-Factor Authentication".
  3. Enter your current password and a 6-digit code from your authenticator app (or a recovery code).
  4. Click "Disable 2FA".

Disabling 2FA removes the extra layer of security from your account. We recommend keeping it enabled.

Locked Out? Lost Your Phone?

If you've lost access to your authenticator app:

  1. Use one of your saved recovery codes to sign in.
  2. Once signed in, go to Settings → Security and disable 2FA, then re-enable it with your new device.

If you've also lost your recovery codes, please contact support with proof of identity and we'll help you regain access.

Mobile App

2FA is fully supported on the TradesMen Network iOS app. The setup and verification flows work identically — you'll receive a 2FA challenge screen after entering your password.