Two-Factor Authentication

Two-factor authentication (2FA) adds a second verification step when you sign in to Contismo. After entering your password or completing OAuth sign-in, you enter a code from an authenticator app or a backup code.

2FA applies to your Contismo account, not to individual projects. Each team member manages their own 2FA settings.

Enable Two-Factor Authentication

1. Open your account menu in the Studio header.
2. Go to User Settings.
3. Find the Two-Factor Authentication card.
4. If you sign in with email and password, enter your password and click Enable Two-Factor Authentication.
5. Scan the QR code with an authenticator app (such as Google Authenticator, 1Password, or Authy).
6. Enter the six-digit code from your app to verify setup.
7. Save your backup codes in a secure place.

If you sign in with Google or another OAuth provider only (no password on your account), you can enable 2FA without entering a password.

Save your backup codes

Backup codes let you sign in if you lose access to your authenticator app. Each code works once. Store them somewhere secure, such as a password manager. Contismo cannot recover lost backup codes for you.

Sign In with 2FA

When 2FA is enabled, sign-in works like this:

1. Enter your email and password, or continue with Google.
2. On the two-factor step, enter the six-digit code from your authenticator app.
3. Optionally choose to trust this device so you are not prompted again on the same browser.

If you cannot access your authenticator app, use a backup code instead of the TOTP code.

Manage Two-Factor Authentication

From User Settings → Two-Factor Authentication you can:

• Regenerate backup codes — creates a new set of backup codes. Previous codes stop working.
• Turn off two-factor authentication — disables 2FA for your account. You may need to enter your password to confirm.

If you started setup but did not finish verifying your authenticator app, the card shows Incomplete until you complete verification or cancel setup.