# Two-factor Authentication (2FA) Overview

Two-factor authentication (2FA) adds a second checkpoint to the sign-in process for your Cloud Voice account. Once it is turned on, entering your password is no longer enough on its own: you also supply a short verification code, so a stolen or guessed password cannot unlock your account by itself. You can enable 2FA for your account from the Cloud Voice App. This page explains the two verification methods available and points you to the setup instructions for each.

:::note
Two-factor authentication is only available once your Cloud Voice platform is running version 84.10.0.30 or later, and your platform administrator may still need to turn the feature on. If you expect to see the 2FA settings but they are missing, contact your administrator to confirm the platform version and that the option is enabled.
:::

## Verify with an authenticator app

With this method, a code is generated on your mobile device by an authenticator app that you install and link to your Cloud Voice account. Each time you sign in, you enter your password plus the current code shown in the app.

Any of the following authenticator apps work with Cloud Voice:

- [Google Authenticator](https://support.google.com/accounts/answer/1066447?hl=en)
- [FreeOTP](https://freeotp.github.io/)
- [Twilio Authy](https://authy.com/)
- [Microsoft Authenticator](https://www.microsoft.com/en-us/security/mobile-authenticator-app)

After you install one of these apps, add your Cloud Voice account to it. From then on, the app produces the rotating codes you need whenever you log in.

:::tip
Authenticator apps generate codes on your phone without needing a network connection, so this method still works if your email is slow or unreachable. It is a good default choice for most technicians.
:::

For step-by-step setup, see [Configure Two-factor Authentication using Authenticator Application](/pbx/web-client-user-guide/configure-two-factor-authentication-using-authenticator-application/).

## Verify by email

With this method, Cloud Voice emails a verification code to the same address you sign in with. At login, you enter your password and then the code delivered to that mailbox.

:::caution
Because the code is sent to your login email address, you must be able to open that mailbox every time you sign in. If you lose access to it, you will not receive the code and will be locked out of your account, so keep that email account recoverable.
:::

For step-by-step setup, see [Configure Two-factor Authentication using Email](/pbx/web-client-user-guide/configure-two-factor-authentication-using-email/).
