Each website that supports Time-based One-time Password (TOTP) or Two-factor Authentication (2FA) with an "Authenticator" handles configuration slightly differently. You will need to start the setup from each individual website or service that you are accessing (e.g. google.com, github.com). The option to configure this will commonly be found under the "Security" options of your account.
If you have lost access to the device or method that you use for two-step login (2FA) you can recover your account using your two-step login recovery code.
Two-step login (or two-factor authentication) greatly increases the security of your account by requiring you to complete a secondary step while logging into SecretSafe (in addition to your master password). Even if someone were to discover your master password, they could not log into your SecretSafe account without access to the secondary step. You can read more about two-step login here. We recommend that all users activate and use two-step login with their SecretSafe account.
SecretSafe supports two-step login by using a third-party authenticator app such as Authy, Google Authenticator, or FreeOTP.
SecretSafe has partnered with Duo Security to bring two-factor authentication to SecretSafe logins, complete with inline self-service enrollment and authentication prompt (offering SMS, phone call, U2F security keys, and push notifications with the Duo Mobile app).
SecretSafe supports two-step login via email. A verification code will be emailed to you during login.
SecretSafe supports two-step login via FIDO U2F. Any FIDO U2F certified device will work. We recommend a YubiKey.
SecretSafe supports two-step login via YubiKey. Any YubiKey that supports OTP capabilities can be used. This includes all YubiKey 4 and 5 series devices as well as YubiKey NEO and YubiKey NFC.