What is a 2FA?
A 2FA, also known as a Two-Factor Authentication, is a two-step verification system. It is an additional layer of security known as "multi factor authentication" that requires not only a password and username but also something that solely the user has on them, i.e. a piece of information which only they should know or directly have on hand.
At CoinExchange.io we employ the use of Google Authenticator as our 2FA layer of security.
Google Authenticator generates two-step verification codes on your phone or mobile device.
This two-Step Verification provides stronger security for your CoinExchange.io account by requiring an additional step of verification when you sign in. In addition to your user name & password, you will also need a code generated by the Google Authenticator app on your phone.
Visit the link below to download the app for Google playstore and itunes.
Setting Up 2FA on your account
In order to enable 2FA on your account – click Settings->Manage Google Authenticator and follow the instructions. Please then use the Google Authenticator app to scan the barcode present on the screen, doing this will add your CoinExhange.io user account to the app. The code within Google Authenticator will then refresh with a new code every 30 seconds. Simply enter the code currently displayed on your device and then press ‘Confirm Google Authentication Code’’, your Google Authenticator Setup should now be successful. Ensure that when entering your 2FA code to use no spaces between digits.
Removal of 2FA from your account
In order to remove 2FA from your account – click Settings->Manage Google Authenticator. Simply enter the current Google Authentication code displayed within the app on your device and the click on the ‘Remove Google Authenticator’ button. Your 2FA should now be removed from your account. You can re-enable at a later stage.
Backing up the secret code
Please ensure to write down and store safely the Google secret code displayed on the setup screen when first enabling 2FA on your account in case you lose your phone or mobile device, you are also able to take a photo or screenshot of the secret code and print it out. This secret code allows you to enable 2FA from another device in the event you lose or damage your phone or mobile device. If you forgot to record the 2FA secret code when enabling 2FA on your account, you will need to remove 2FA and write the secret code down when re-enabling 2FA.
If you are experiencing other issues with Google Authenticator, please refer to Google's documentation on their product below:
If you are using a new phone or mobile device, you will need to transfer your Google Authenticator to your new phone or mobile device and manually add each app with the secret code you initially used to enable it. Google does not have great documentation on this process, but try these articles:
What to do if you lose or can no longer access your device containing your 2FA?
If you have lost or no longer have access to your Google Authenticator device please create a support ticket and follow these steps to help us restore access to your account:
1. Please let us know as accurately as possible what balances you had in your account.
2. Please also let us know the amount and currency of the last deposit to your account.
3. Please provide at least one IP address that you have logged in with in recently.
4. Please let us know your username.
5. Please let us know the exact email address you used to register your CoinExchange.io account.
With this information we will be able to verify we are actually talking to the account owner and will be able to remove your 2FA so you can log into your account again.
2FA Troubleshooting Tip
The most common cause for two-factor failures is that the clock on your phone or mobile device has wavered. There is only a 30 seconds window for 2FA confirmations, so if your clock has wavered outside of this you will not be able to login. Please ensure your phone is configured to sync with the cellular network.