How to Enable Two-Factor Authentication (TOTP)
Two-factor authentication (2FA) adds an extra layer of security to your account. Once enabled, you'll need both your password and a one-time code from an authenticator app to sign in.
What you'll need
- A smartphone or tablet
- An authenticator app such as Google Authenticator, Authy, or 1Password
Step 1: Go to Account Security
Navigate to My Account → Security.
Step 2: Set up authenticator app
Step 3: Verify and enable
Step 4: Save your backup codes
After verification, you'll receive a set of one-time backup codes. These are your safety net if you lose access to your authenticator app.
- Write them down or save them securely (password manager, printed copy in a safe place)
- Each code can only be used once
- Click I've saved my backup codes to finish setup
Managing TOTP after setup
Once enabled, the Security page lets you:
- View backup codes — See your remaining unused codes
- Regenerate backup codes — Create new codes (this invalidates all previous codes)
- Disable TOTP — Turn off authenticator-based 2FA entirely
Signing in with 2FA
After enabling TOTP, signing in works like this:
Troubleshooting
"Invalid code" error
- Make sure the code hasn't expired — authenticator codes refresh every 30 seconds
- Check that the date and time on your phone are set to automatic
- Try the next code that appears
Lost access to your authenticator app
- Use one of your saved backup codes to sign in
- After signing in, go to Account → Security, disable TOTP, then set it up again with your new device
"Two-factor authentication is not available"
- This may be a temporary backend configuration issue. Try again later or contact support at support@brickzap.com
Backup codes running low
- Go to Account → Security and click Regenerate backup codes
- Save the new codes — the old ones will stop working