Skip to main content

Protect your Coda account using 2FA

Learn about using multi-factor authentication to protect your account, including how to set up and what to do if you lose your 2FA device.


Two-factor authentication (or 2FA) is a way to increase the security of your account. Using 2FA will ensure your account can't be accessed by bad actors in the event that they are able to guess your email and password combination or otherwise gain access to your login information. Because 2FA requires confirmation from a separate device, your account is more protected. Continue reading to learn how to add 2FA to your Coda account, what to do if you lose access to your 2FA device, and more.

Within this article, you’ll find...

 

Add 2FA to your Coda account

ℹ️ Coda supports two-factor authentication (2FA) for accounts using email/password logins. Note that 2FA is not available for accounts using SSO or Google login. Learn about available sign-in methods here.

You can optionally add 2FA to your account by taking the following steps:

  1. Visit coda.io/account.

  2. Under Security Settings, toggle on the Two-step verification toggle on.

    • Please note you will need to add a password to your account first.

      16_10 (90).png
       

  3. Once you turn on two-step verification, you'll see a QR code that you can scan with any authenticator app (see Supported authenticator apps below).

  4. Enter the six-digit code provided by the authenticator app, and you should be good to go!

Next time you log in to your Coda account, you will be prompted to verify using your chosen 2FA method.

 

Supported authenticator apps

Any authenticator app should work with 2FA on Coda. If you don't have a preferred authenticator app already, here are a few popular examples:

Check the app store on your device to find the version that works for you! You can explore other popular authenticators here.

 

Reset 2FA after losing device

If you lose access to the device linked to 2FA, you'll need to reach out to Coda Support. You can do so by clicking the question mark icon in the lower right corner of any doc, then choosing Contact support. If you are logged out of Coda, you can email us at support@coda.io.

You will then receive an email asking you to confirm the reset request with support. Before you confirm, please we aware that once we begin this process you will be locked out of your account for 14 days for security purposes. You can contact support to cancel the request at any point within those 14 days.

16_10 (91).png

Once you’ve confirmed the request, you’ll receive another email letting you know that the 14-day hold has begun. The email from support will look something like this:

16_10 (92).png

After the 14-day waiting period, you will receive a final email from support confirming the 2FA reset. You can then log in to your Coda account via your email and password. If you wish to reinstate 2FA with your new device, just follow the steps at the start of this article.

 

FAQs

How can I turn off 2FA after turning it on?

You can turn off 2FA at any time from your account settings. Simply toggle off the Two-step verification option. You'll be prompted to enter your code from your authenticator app when you do this. If you get a new device, make sure you disable 2FA using the old device before getting rid of it.

Can I enforce 2FA for all employees in my organization?

No - it isn’t currently possible to enforce 2FA for all employees. Instead, we recommend that you enforce 2FA natively in your IdP, or enforce a sign-in method such as Google and set up MFA for that method.

 

 

Related resources