One thing you can do secure an online account is to activate Two-Factor authentication. Twitter, Facebook, Google, Dropbox, iCloud, and most online email services offer two-factor authentication. With two-factor authentication, when you try to log into your account, you will receive a message (could be text or email) with a code that you must enter before being able to access your account or you will need to use the code from an authenticator app. I know that means you need to have your cell phone with you or be online to access your email, and it means that you will need to jump through more hoops, so that you can access each account you set up with two-factor authentication, but this will help secure your account. The following post is specifically about How To Turn On 2 Factor Authentication For Facebook.
Facebook 2 Factor Authentication Setup
As noted in the intro, Facebook Two-Factor authentication has 2 options. You can either have FB send you a text message code or use an authentication app to generate authentication codes. To set up Two-Factor authentication
- Go to the Security section of your account settings. Click Edit under “Use two-factor authentication”
- In the next screen you see, You can turn on Two-Factor Authentication.
- Once you turn on Two-Factor Authentication, you will get a box where you can set up to receive a code via your cell phone (NOTE: Google Voice Numbers do not work for this) or use a code from an Authentication App, like the Microsoft Authenticator App. You will be required to set up at least 1 of the 2, I recommend setting up both. This will give you options when signing in.
Notes Concerning Two-Factor Set Up
- If you haven’t saved the computer or mobile device you’re using, you’ll be asked to do so when you turn on two-factor authentication. This way you won’t have to enter a security code when you log in again. Don’t click Save this browser if you’re using a public computer that other people can access (example: a library computer).
- The two-factor authentication settings will need to be able to remember your computer and browser information so it can recognize it the next time you log in. Some browser features block this. If you’ve turned on private browsing or set up your browser to clear your history every time it closes, you might have to enter a code every time you log in.
There are a number of Authenticator apps, for the purpose of this post we will reference 2 of the most common ones, which are the Microsoft Authenticator app and the Google Authenticator app. Both apps serve the same purpose, you set up your account information (for whatever account you will be turning on 2FA on) within the app, and when you set up 2FA on each account you want to secure, the app will provide a code that you will use as an additional step to access your account.
To download the authenticator app
- Microsoft Authenticator App (iOS / Android / Windows)
- Google Authenticator App (iOS / Android / Windows via Chrome)
Additional Setting You Should Turn On
In the same Security and Login section, just a little lower down, you will find “Get alerts about unrecognized logins”. When you get to this section, select Edit to turn on Alerts. You will get an alert whenever your account is logged into. If you are logging in and you get the message, no problem, you know it’s you. If you are not logging into FB and suddenly get an alert, you can take action before account is compromised.
- When you select edit, you will have choices for getting login notifications for both Facebook and FB Messenger. You can set up the alerts to come to your phone or via email.
The Alerts You Can Receive / What To Do
If you set up alerts, they can show up as an email message or a text alert.
If you receive an alert and you want to make sure it’s genuine, at the bottom of the Security and Login section, you will see an option to see all the recent emails Facebook has sent you. This section will list all messages/alerts sent to you by FB. That helps for anyone who is afraid of fake emails.
And once you know that the email alert or text is legit, there is a spot in the message that says, If you did not request a new password, let us know. That link will allow you to alert FB to the fact that someone is trying to compromise your account.
Considering how much information you share online, it is important that you are able to keep control of your accounts at all times. This is just one step in the process to do that.
- Facebook – What is two-factor authentication