Get your google authenticator backup codes
Press Authenticate with security key to interact with your Security Key, and you’re in! Setting up your Authentication App Authenticating with Google When you log in, you’ll get one additional challenge after entering your username and password to use you security key: If you’re adding a Security Key on another device and it’s asking for an MFA code, but you’ve only registered Security Keys on other devices, remember you can always use a Backup Code to get the process going, then regenerate them to get a fresh set once you’re all done. You can now register another Security Key on this device or a different device (you can have up to 16 at the same time). Then, remember to download and store your Backup Codes. Afterwards, be sure to name it something you’ll remember. Press Let’s go and interact with your key (you might need to tap it, select it, put your finger on it, scan your face, make an incantation over it). You’ll land on this notification so you can go grab your key and plug it in: To set up a Security Key, select Register a Security Key and follow the prompts to reauthenticate.
While here, you will be able to view the Multi-Factor Authentication options by referring to Password and Authentication.
You'll be redirected to your User Settings and land on the My Account page. Start by selecting the the cog wheel next to your username. Each code can only be used once, so once your account is under your control again with new MFA configured, generate some new codes and hide them away safely again. If you are locked out of your account and need to get past MFA, you can use one of these codes in order to recover and reconfigure your account. We recommend storing them in a password manager (like 1Password, or KeePas), but you can also print them out and hide them if you’d prefer. How can you regain access to your account? With Backup codes!īackup codes are special, random codes we give you after signing up for MFA. What happens when the worst case scenario happens? You’ve registered your security key, but your laptop’s been stolen or configured your Authenticator, but lost your phone. Since you can only use SMS if you already have an Authenticator App enabled, you should really think carefully about whether it’s worth adding a more easily stolen MFA after setting up a better option with your Authenticator App. Hackers have been able to intercept text messages or call up phone carriers to do a “SIM Swap” attack and take over phone numbers. If we can be transparent with you, SMS MFA is better than no MFA, but not by a lot. But these codes are still phishable, so if you lose your phone, this could lead to a predicament. With an Authenticator App, you’ll register a QR code or manually enter a key with an app on your phone or a password manager and then generate a new code for you to use every 30 seconds.Īs long as you have your phone or access to your password manager, you can make new codes and hackers will have a hard time getting access to your app. Plus the name makes us think we’re in a spy novel. The Authenticator App is an excellent choice that mixes flexibility with security. This method is the best way to protect your account because it is simple to use, on your own devices, backed up in the cloud, and, most importantly, phishing resistant. And to be clear, we’re never given any biometrics data from your device. Whenever you want to use the passkey, you authenticate using your biometric so that your device sends the passkey data to Discord. The way this works is when you register a passkey for Discord, you’ll protect it using your biometric (fingerprint or face) and the key itself lives on your device and in your provider’s cloud (e.g.
FaceId, TouchId, Windows Hello) to gain access to your account. This is the latest in personal security, and also the most secure! With Security Keys, you’ll be able to use a passkey (ex. We’ll talk through each option and give you some info on the security of each one. You can choose any one of these options or any combo, but there are positives and negatives to each. There are three options to add MFA to your account: Security Keys, an Authenticator App, and SMS. Multi-Factor Authentication (MFA for short) is the best way to add an extra layer of security to your Discord account to make sure that only you have the ability to log in.