Two-factor authentication (2FA) adds an extra check at sign-in: in addition to your password, you enter a six-digit code from an authenticator app on your phone. Even if someone gets your password, they can't sign in without the code. Atlas supports time-based one-time-password (TOTP) authenticators like 1Password, Google Authenticator, Authy, or Microsoft Authenticator.
Enable 2FA
- Open your account settings and find the Two-factor authentication section.
- Click Enable. If you signed in a while ago, Atlas asks you to re-enter your password to confirm it's you.
- Atlas displays a QR code. Open your authenticator app and scan the code, or enter the displayed secret manually.
- The app generates a six-digit code that rotates every 30 seconds. Enter it in the Verification code field and click Verify.
- If the code is correct, 2FA is enabled and the panel shows an Enabled badge.
Save the recovery code or backup secret your authenticator provides — if you lose access to the authenticator app, that's the only way back into your account without contacting support.
Sign in with 2FA
After 2FA is on, signing in becomes a two-step flow:
- Enter your email and password as usual.
- Atlas prompts for a 2FA code. Open your authenticator app, find the Atlas entry, and enter the current six-digit code.
Codes expire every 30 seconds. If a code fails, wait for the next one and try again.
Disable 2FA
In the Two-factor authentication section, expand the panel and click Disable. Atlas may ask you to verify your identity again before turning it off — either with your password or with a current 2FA code.
Limits and notes
- Atlas supports TOTP only; SMS-based 2FA is not available.
- If you lose access to your authenticator and don't have a recovery code, contact support to recover your account.
- 2FA is per-user, not per-workspace. Each member chooses whether to enable it for their own account.
- Enabling 2FA does not affect other workspace members or any shared resources.