Safeguards

Two-factor authentication (2FA)

What is two-factor authentication?

Two-factor authentication asks for a second proof alongside the password at login, such as a code from an app or a security key you plug in. A stolen password on its own is then no longer enough to get in.

Public bodies such as the German BSI list two-factor login among the most effective single measures against the misuse of stolen credentials. Microsoft 365, Google Workspace, common VPN products and many industry applications already include it; it only has to be switched on.

The methods differ in strength. A code by SMS is less well protected than an app or a security key, because a phone number can be taken over. For accounts with administrator rights, a security key is the most robust option.

All terms in the knowledge base

From the term to practice

Where does your business actually stand?

The IT Check reviews your IT across 8 audit areas with more than 100 individual checks and delivers documented findings with a prioritised action plan. From 1,299 € excl. VAT. The first call takes 20 minutes and carries no charge.

Book a first call