Two-Factor Authentication

Add an extra layer of security to your account with 2FA.

What is Two-Factor Authentication

Understanding 2FA and how it protects your account.

Two-factor authentication (2FA) adds an extra layer of security to your account by requiring two forms of verification when signing in.

1
Something You Know

Your password

+
2
Something You Have

Your phone (authenticator app)

=
Secure Access

Protected account

Why Enable 2FA

The benefits of two-factor authentication.

Protection Against
  • • Stolen passwords
  • • Phishing attacks
  • • Brute force attempts
  • • Data breaches elsewhere
Benefits
  • • Peace of mind
  • • Industry best practice
  • • Compliance requirements
  • • Protects business data

Highly Recommended

We strongly recommend enabling 2FA for all accounts, especially for business owners who have access to sensitive business and financial data.

Setting Up 2FA

Step-by-step guide to enable two-factor authentication.

Step 1

Verify Password

Confirm identity

Step 2

Scan QR Code

Use authenticator app

Step 3

Enter Code

Verify setup

Step 4

Save Recovery

Store backup codes

1
Navigate to Two-Factor Settings

Go to Settings → Two-Factor Authentication.

2
Verify Your Password

Enter your current password to confirm your identity. This is required for security.

3
Download Authenticator App

If you don't have one, download an authenticator app:

  • Google Authenticator (iOS / Android)
  • Microsoft Authenticator (iOS / Android)
  • Authy (iOS / Android / Desktop)
4
Scan QR Code

Open your authenticator app, tap "Add Account" or "+", and scan the QR code displayed on screen.

Two-Factor Setup
app.vasbox.co.zw

Scan QR Code

Scan this code with your authenticator app

Or enter this code manually:

JBSW Y3DP EHPK 3PXP
Enable Two-Factor
Scan the QR code with your authenticator app
5
Enter Verification Code

Enter the 6-digit code from your authenticator app. The code changes every 30 seconds.

6
Save Recovery Codes

VasBox will display recovery codes. Download or copy these codes and store them securely offline.

Save Your Recovery Codes!

If you lose access to your authenticator app, these codes are the only way to regain access to your account. Store them in a secure location like a password manager or a safe.

Using 2FA When Logging In

What to expect when signing in with 2FA enabled.

  1. Enter your email and password as usual
  2. Click "Sign In"
  3. 2FA challenge screen appears
  4. Open your authenticator app
  5. Enter the current 6-digit code
  6. Click "Verify"
  7. You're logged in!

Code Timing

Authenticator codes change every 30 seconds. If your code is about to expire, wait for the new one to ensure it's accepted.

Recovery Codes

Backup access to your account.

Recovery codes provide backup access to your account if you lose access to your authenticator app.

When to Use Recovery Codes
  • • Lost or broken phone
  • • Authenticator app deleted or reset
  • • Cannot access verification codes
Using a Recovery Code
  1. On the 2FA screen, click "Use recovery code"
  2. Enter one of your saved recovery codes
  3. Each code can only be used once
  4. Consider regenerating codes after using one
Regenerating Recovery Codes
  1. Go to 2FA settings
  2. Click "Regenerate Recovery Codes"
  3. Old codes are immediately invalidated
  4. Save the new codes securely

Running Low on Recovery Codes?

If you've used most of your recovery codes, regenerate them immediately. Running out means you could lose access to your account if you lose your phone.

Disabling 2FA

How to turn off two-factor authentication (not recommended).

Not Recommended

Disabling 2FA reduces your account security. Only disable it if absolutely necessary, and consider re-enabling it as soon as possible.
To Disable 2FA
  1. Go to 2FA settings
  2. Enter your password to confirm identity
  3. Click "Disable Two-Factor Authentication"
  4. Confirm the action in the dialog
  5. 2FA is immediately removed from your account
Previous Password & Security
NextAppearance