Two-factor authentication (2FA) helps to ensure your online accounts are safe.
It adds an extra layer of security, on top of your password.
With 2FA, a hacker can’t access your account using your password alone.
On top of a password, 2FA requires you to provide extra information to sign on.
The website will soon begin requiring all accounts to enabletwo-factor authentication.
GitHub doesn’t support sending SMS in every country outside the US.
As such, it may be best to avoid this option.
Select your profile photo in the upper right corner, then clickSettingsfrom the pop-up menu.
ClickPassword and authenticationfrom the left sidebar underAccess.
On the next page, selectEnable two-factor authentication.
GitHub will display a QR code on the follow-up page.
Open Authy and tapAdd Account, then selectScan QR Code.
Scan the code by pointing your camera at the QR code on GitHub.com.
GitHub will display recovery codes on the next page.
SelectDownloadand save the file in a secure location.
After that, selectI have saved my recovery codes.
Recovery codes help in account recovery if you lose your gadget and can’t access your authentication app.
This is the last resort for recovering an account, so keep the codes safe.
Otherwise, you could lose access to your GitHub account for good.
First, selectenter this text codeunderScan the QR codeon GitHub.
Next, go back toAdd Accountin Authy and selectEnter key manuallybelow theScan QR Codebutton.
Finally, jot down the key displayed on GitHub and tapSaveto finish the setup.
By enabling 2FA, GitHub is removing the risk associated with compromised passwords.
2FA removes the vulnerability associated with passwords, ensuring you need extra credentials to access your account.
To curb unauthorized account access and, potentially, account takeover, you should enable 2FA today.
