Setting Up Two-Factor Authentication
Add an extra layer of security to your Oskuo account with TOTP two-factor authentication.
What is two-factor authentication?
Two-factor authentication (2FA) adds a second step when you sign in. After entering your password, you'll need a six-digit code from an authenticator app on your phone. This means even if someone has your password, they can't access your account without your phone.
Setting up 2FA
- 1 Open Account from the sidebar, then click Security
- 2 Click Enable two-factor authentication
- 3 Scan the QR code with your authenticator app (Google Authenticator, Authy, 1Password, etc.)
- 4 Enter the six-digit code from your app to confirm
- 5 Save your recovery codes somewhere safe — you'll need these if you lose access to your authenticator app
Recovery codes
- lock When you enable 2FA, you receive 8 single-use recovery codes. Each code can only be used once.
- lock If you run out, you can generate a fresh set from the Security page.
- lock Store them securely — in a password manager, printed in a safe place, or similar.
Team MFA mandate
- info Team owners can require all team members to enable 2FA from Team Settings.
- info When this is turned on, members who haven't set up 2FA will be prompted to do so before they can use Oskuo.
- info Existing sessions are revoked when the mandate is enabled.
Disabling 2FA
- info You can disable 2FA from the Security page.
- info If your team has a MFA mandate enabled, you won't be able to disable it until the team owner removes the mandate.
Lost your authenticator?
If you've lost access to your authenticator app, use one of your recovery codes to sign in. Then go to Security settings to set up a new authenticator device.