3.1.1 Two-factor authentication on Google
This section is part of the amber pathway.
If you have a Google account it is a good idea to set up two-factor authentication.
Google’s two-factor authentication sends authentication codes to your mobile phone. You will need a phone that only you have access to, as otherwise someone who has stolen your details could use it to gain access to your Google account.
You can find out more at Google’s 2-Step page [Tip: hold Ctrl and click a link to open it in a new tab. (Hide tip)] and set it up using the following instructions:
- Log in to your Google account using your usual username and password.
- Click your profile picture then click ‘Account’ to take you to your settings page.
- Enter your phone number, choose SMS or voice calls.
- Go to the ‘Security’ tab.
- In the ‘Password’ box click to set up 2-step verification.
- Click Send code.
- Google will send a six figure authentication code, enter it into the box.
- Google will ask if you want to trust the current computer so it doesn’t require two-factor authentication again. Only click this box if you are the only user of this computer, or if it is secured. Click Next.
- Google will let you amend the list of trusted computers from your user account. You can also change your phone number from the account settings.
- Click Confirm to finish.
- You might also want to add a backup phone number in the event you lose, or are not with, your main mobile phone.
- Non-Google applications running outside of the browser (such as mobile apps, email programs and instant messaging clients) require new, application-specific passwords to work with two-factor authentication. Google will prompt you to create them now. Enter the new passwords into your applications, following Google’s instructions.