# Setting up two-factor authentication

- **URL:** https://trymorgan.ai/help/two-factor-auth
- **Category:** Account & Settings

---

## Setting up two-factor authentication

Two-factor authentication (2FA) adds an extra layer of security to your Morgan AI account. We strongly recommend enabling it, especially since your account contains financial data.

## What is two-factor authentication?

When 2FA is enabled, signing in requires two things:
1. Your password
2. A time-limited code from an authenticator app or sent to your phone

Even if someone gets your password, they can't access your account without the second factor.

## Enabling 2FA with an authenticator app (recommended)

1. Go to **Settings > Account > Security**
2. Tap **Enable two-factor authentication**
3. Choose **Authenticator app**
4. Download an authenticator app if you don't have one (we recommend Google Authenticator or Authy, both are free)
5. Scan the QR code shown in Morgan AI using your authenticator app
6. Enter the 6-digit code from the app to verify setup
7. Tap **Enable**

Save your backup codes somewhere safe. You'll need them if you lose access to your authenticator app.

## Enabling 2FA via SMS

If you prefer to receive codes by text message:
1. Go to **Settings > Account > Security**
2. Tap **Enable two-factor authentication**
3. Choose **SMS**
4. Enter your phone number
5. Enter the code sent to your phone
6. Tap **Enable**

Note: SMS-based 2FA is less secure than an authenticator app because phone numbers can be compromised.

## Signing in with 2FA enabled

After entering your password, you'll be prompted to enter a 6-digit code. Open your authenticator app (or check your SMS) and enter the current code.

## Disabling 2FA

To turn off two-factor authentication:
1. Go to **Settings > Account > Security**
2. Tap **Disable two-factor authentication**
3. Enter your password to confirm

We recommend keeping 2FA enabled for the security of your financial data.