Multi-factor authentication (MFA) makes it much more difficult for a hacker to gain access to your stuff online, and the most common form of consumer MFA is two-factor authentication (2FA). A very common form of 2FA is the debit card. One factor is the card itself, which contains magnetic identification information (these days, a chip) and a PIN that you provide when you put the thing in an ATM. It’s simple and pretty good at keeping others out of accessible cash at ATMs. 2FA is important for your online accounts, like email and your iCloud accounts.

While I admit that it can be a bit annoying having to do something extra to get into your account, it is far less annoying than having your identity stolen, losing access to your email, or replying to your friends who wonder why you have. Said such crazy things about them (unless, of course, you said those crazy things!). Or, God forbid, someone like you to log into one of your gaming accounts.

Here’s how 2FA or two-step authentication works for a couple of different types of online accounts. (Note that these services change things from time to time, so it’s good to be aware of those changes.)

Set up Google 2-Step Verification

First log in with your username and password (we’ll get to choosing smart passwords in Part 3) into your Gmail account. There should be an avatar in a circle near the upper left corner of the window. Maybe it’s even a photo of you. Click on it and you will see “My Account”. (By the way, this changes every two years) In the new window that opens, click on “Sign in and security”. Click “Two-Step Verification” and then “Get Started”. It is time to re-enter your username and password. Enter a phone number and click if you want to receive a text message or a phone call. Then magically you receive a text message or phone call with a 6-digit verification code. Write it down and select the option to activate 2-Step Verification. It is easy. Okay, it’s several steps, but not that difficult.

You may prefer to collect your Gmail with some other application, such as Outlook, rather than using a browser to go to the Gmail page for your mail. If so, it is possible that after you’ve turned on 2-Step Verification, Outlook (or another app) might keep telling you that you have the wrong password, even though it knows full well that it’s the correct one. This has happened to me. You will probably need Google to provide you with a specific application password that Google will generate for you. You’ll need to go to the app’s passwords page, which is here at the time of writing.

Select the app you want it for (if it’s Outlook, then you’d select “Mail”), then the device you’re using (Google magically presents a list of the devices you use with their services). Then select “Generate”. It will show you a 16-digit number in a yellow bar for you to use as your new password for that app (Outlook, for example) on that device (don’t enter the spaces). You can save that password in your app and you may need that number again in the future.

Yahoo!

Yahoo! it’s similar: log in to your account, go to the account security page, click “two-step verification” and toggle the button there to activate it. Select an option to receive a text message or phone call for verification. Enter the code that comes to you by text message or phone call. At this point, you can create an app password, similar to Google’s process above for its various apps like Outlook or Apple (iOS) Mail.

iCloud

Now, let’s set up 2FA in your iCloud account. First, you must have a passcode set up on your iPhone or iPad.

Click on the Settings app. If your device uses iOS 10.3.3, click on your name (or the name of the account you use to sign in), then on “Passwords & Security.” Did I mention that this will change as Apple keeps us on our toes by changing everything once we’ve gotten comfortable with the old version? In the most recent old version, you would have clicked Settings, then iCloud, then your name, then Password and security. But I digress …

Now tap on “Turn on two-factor authentication”. Be prepared to answer a few security questions, which we will discuss in a future article, and then enter the phone number where you want to receive the code for 2FA and, as before, select whether you want a phone call or a text message.

Macintosh

For a Mac, open System Preferences, select iCloud and then “Account Details.” You may need to sign in with your Apple credentials. As stated above, answer your security questions if prompted, enter the phone number where you want to receive calls or text messages for verification. Once again, a magic robot instantly sends you the code and you must enter it in the field that awaits your response.

Once it’s on, you will receive a message requesting approval if an unknown device or location logs into your account. Note that on a Mac, that notification can sometimes be in a window that’s hidden behind another, so look for that if you find you’re having trouble getting the approval request.

Speaking of issues, it seems like it takes a lot of work to have two-factor authentication, but once it’s set up, it’s not too much of a hassle and will add considerable security to your accounts, as well as considerable barriers to potential hackers. So do it!

Next time, we’ll discuss passwords, access codes, and why you shouldn’t fill out those fun quizzes all your friends send you.

Next, in part three: Choosing smart passwords and secret questions (also known as giving away the form).

Leave a Reply

Your email address will not be published. Required fields are marked *