Get started

Turn on two-factor authentication for your 1Password account

Learn how to set up two-factor authentication and manage your trusted devices.

Two-factor authentication is an extra layer of protection for your 1Password account. When turned on, a second factor will be required to sign in to your account on a new device, in addition to your 1Password account password and Secret Key.

Learn more about authentication and encryption in the 1Password security model.

Tip

If you use 1Password Business, you can manage two-factor authentication for team members.

Get an authenticator app

Before you can use two-factor authentication with your 1Password account, you’ll need to install an authenticator app on your mobile device. For example:

Although 1Password can be used to store one-time passwords for other services where you use two-factor authentication, it’s important to use a different authenticator app to store the authentication codes for your 1Password account. Storing them in 1Password would be like putting the key to a safe inside the safe itself.

Tip

If you have a security key, like YubiKey or Titan, you can use it as a second factor with your 1Password account.

Set up two-factor authentication

To turn on two-factor authentication:

  1. Sign in to your account on 1Password.com.
  2. Click your name in the top right and choose My Profile.
  3. Click More Actions > Manage Two-Factor Authentication.
  4. Click Set Up App. You’ll see a square barcode (QR code).

    To save a backup of your two-factor authentication code, write down the 16-character secret next to the QR code and store it somewhere safe, like with your passport and Emergency Kit.

  5. On your mobile device, open your authenticator app and use it to scan the QR code. After you scan the QR code, you’ll see a six-digit authentication code.
  6. On 1Password.com, click Next. Enter the six-digit authentication code, then click Confirm.

Your 1Password account is now protected by two-factor authentication. To continue using your account on other devices or to sign in to it on a new device, you’ll need to enter a six-digit authentication code from your authenticator app.

View and manage trusted devices

To view your trusted devices, sign in to your account on 1Password.com. Then click your name in the top right and choose My Profile.

To manage an trusted device, click next to it. You’ll find these options:

  • Deauthorize Device: Your account will be removed from the device.
  • Require 2FA on Next Sign-in: Your account will remain on the device, but changes you make on other devices won’t appear until you reauthorize using a second factor.

Get help

Two-factor authentication requires a 1Password membership and 1Password 7 or later (or 1Password 6.8 for Mac).

After you enter an authentication code, 1Password won’t ask you to enter one again unless you:

If you lose access to your authenticator app or security key

If you lose access to your authenticator app or security key, you won’t be able to sign in to 1Password on new devices until you turn off two-factor authentication.

You can turn off two-factor authentication in the 1Password apps and on 1Password.com.

In the 1Password apps

  1. Open and unlock 1Password on an authorized Mac.
  2. Click your account or collection at the top of the sidebar and choose Manage Accounts.
  3. Click the account you want, then click > Turn off two-factor authentication.
  4. Click Turn Off.
  1. Open and unlock 1Password on an authorized iPhone or iPad.
  2. Tap the icon for your account or collection at the top left and choose Manage Accounts.

    If you’re using an iPad, tap your account or collection at the top of the sidebar.

  3. Tap the account you want, then tap > Turn off two-factor authentication.
  4. Tap Turn Off.
  1. Open and unlock 1Password on an authorized PC.
  2. Click your account or collection at the top of the sidebar and choose Manage Accounts.
  3. Click the account you want, then click > Turn off two-factor authentication.
  4. Click Turn Off.
  1. Open and unlock 1Password on an authorized Android device.
  2. Tap the icon for your account or collection at the top right and choose Manage Accounts.

    If you’re using a tablet, tap your account or collection at the top of the sidebar.

  3. Tap the account you want, then tap > Turn off two-factor authentication.
  4. Tap Turn Off.
  1. Open and unlock 1Password on an authorized Linux computer.
  2. Click your account or collection at the top of the sidebar and choose Manage Accounts.
  3. Click the account you want, then click > Turn off two-factor authentication.
  4. Click Turn Off.

On 1Password.com

  1. Sign in to your account on 1Password.com in an authorized browser.
  2. Click your name in the top right and choose My Profile.
  3. Click More Actions > Manage Two-Factor Authentication.
  4. Click Turn Off Two-Factor Authentication, then enter your account password.

If you don’t have access to an authorized browser or device, ask someone to recover your account.

If your team uses Duo

If your team uses Duo, you won’t see the option to turn on two-factor authentication because Duo is already providing multi-factor authentication for everyone on your team.

If 1Password isn’t accepting your authentication codes

Make sure the date and time are set correctly on Mac  , iOS  , Windows  , and Android  .

Still need help?

If this article didn't answer your question, contact 1Password Support.

Published: