Two-factor authentication & passkeys
1 min read Updated Jun 19, 2026
Add a second layer of protection with an authenticator app or a device passkey.
Two-factor authentication & passkeys
A password alone can be phished or reused. Turning on a second factor means that even if someone learns your password, they still can't get in. Octa8 manages two-factor options from Profile → 2FA on /user/profile.
Authenticator app (TOTP)
- Open Profile → 2FA and choose Enable two-factor authentication.
- Scan the QR code with an authenticator app (Google Authenticator, Authy, 1Password, etc.).
- Enter the 6-digit code the app shows to confirm.
- Save your recovery codes somewhere safe — they're your backup if you ever lose the device.
Passkeys & security keys
Passkeys let you sign in with your device's biometrics — Face ID, Touch ID, Windows Hello or a platform passkey — with no password at all. Prefer hardware? Register a security key (YubiKey, Titan or any FIDO2 device). Add either from Profile → 2FA, then confirm with the on-device prompt.
Rate this article
Was this article helpful?