# 2FA

#### Two-Factor Authentication (2FA)

Two-factor authentication (2FA) is available for all user accounts and is strongly recommended as an additional security control to reduce the risk of unauthorized access. As part of our ongoing alignment with enterprise security best practices and compliance frameworks, 2FA will become mandatory in a future enforcement phase.

**Configuration and Supported Methods**

Two-factor authentication can be configured on your DataImpulse dashboard in the profile [security settings](https://app.dataimpulse.com/account/security).

<figure><img src="https://2032935727-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F2PNbkVMJTPjkWGv2Kbvj%2Fuploads%2FqJBDUsohB7rZB9vEJauv%2Fimage.png?alt=media&#x26;token=56f6b1cd-1982-43db-80e7-fcc8d4dbadef" alt=""><figcaption></figcaption></figure>

The following authentication methods are supported:

* Authenticator application (a temporarily generated code)
* Email-based verification (a time-sensitive code every time you sign in)

<figure><img src="https://2032935727-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F2PNbkVMJTPjkWGv2Kbvj%2Fuploads%2FJ7QAtU7DPYqXntJOFHtL%2Fimage.png?alt=media&#x26;token=7c904d20-465a-41fb-9dd8-9d87424dbf9d" alt=""><figcaption></figcaption></figure>

Users may select the authentication method that best aligns with their organizational security policies, risk tolerance, and operational requirements. There is also an option to disable 2FA.

**Enforcement Notice**

While 2FA is currently optional, it will be required for all accounts in a forthcoming phase.

{% hint style="info" %}
Please note: **2FA applies only to standard email/password login**. It does **not** apply when signing in via **Google or LinkedIn**.
{% endhint %}

{% embed url="<https://youtu.be/dbkMkD1LKBA>" %}