2FA Methods
Authenticator App (TOTP)
Use apps like Google Authenticator, Authy, or 1Password to generate time-based codes.
- Works offline
- Most secure option
- 30-second code rotation
Email Codes
Receive a one-time code via email when you sign in.
- No app required
- Easy to set up
- 10-minute code validity
Backup Codes
Recovery Options
When you enable 2FA, you'll receive backup codes. Store these securely—they're your recovery option if you lose access to your 2FA method.
- 10 single-use backup codes
- Regenerate codes anytime
- Store in a secure location
Why 2FA Matters
- Passwords alone are vulnerable to phishing, credential stuffing, and data breaches. 2FA ensures an attacker needs physical access to your device or email, not just your password.
- TOTP codes rotate every 30 seconds — a stolen code is useless within minutes.
- Account lockout triggers after 5 consecutive failed login attempts, blocking brute-force attacks automatically.
- Zero-knowledge architecture means your 2FA secrets are encrypted with your key — even cloak.business cannot disable your 2FA silently.
Supported Authenticator Apps
- Google Authenticator — iOS + Android, simple and widely used
- Authy — Multi-device sync with encrypted cloud backup
- 1Password — Integrated TOTP inside your password manager
- Microsoft Authenticator — Works on iOS, Android, and Windows
- Any RFC 6238 TOTP app — Standard-compliant apps all work with cloak.business