Two-Factor Authentication (2FA) adds an extra layer of security to your NinjaSwap account by requiring not only your password but also a time-based code generated by an authenticator app on your mobile device. This significantly enhances your account security by ensuring that even if your password is compromised, unauthorized access is still prevented.
Why You Should Enable 2FA
Enabling 2FA provides several important security benefits:
- Protects against password theft and brute force attacks
- Prevents unauthorized access even if your password is compromised
- Adds a physical security component (your mobile device) to the authentication process
- Notifies you of login attempts through the need to generate a code
- Has become a standard security practice in the cryptocurrency industry
Supported Authenticator Apps
NinjaSwap supports any standard TOTP (Time-based One-Time Password) authenticator app, including:
- Google Authenticator (iOS, Android)
- Authy (iOS, Android, Desktop)
- Microsoft Authenticator (iOS, Android)
- LastPass Authenticator (iOS, Android)
- 1Password (iOS, Android, Desktop)
Setting Up 2FA
Follow these steps to enable Two-Factor Authentication on your NinjaSwap account:
- Log in to your NinjaSwap account
- Navigate to Security Settings: Click on your profile icon in the top-right corner, select "Profile" from the dropdown menu, then click on the "Security" tab.
- Find the 2FA section: Locate the "Two-Factor Authentication" section and click the "Enable 2FA" button.
- Install an authenticator app: If you don't already have one, download and install a compatible authenticator app on your mobile device.
- Scan the QR code: Use your authenticator app to scan the QR code displayed on the screen. Alternatively, you can manually enter the provided secret key into your app.
- Enter verification code: Your authenticator app will generate a 6-digit code. Enter this code on NinjaSwap to verify setup.
- Save your backup codes: NinjaSwap will provide you with backup codes. Store these in a secure location as they'll allow you to regain access to your account if you lose access to your authenticator app.
- Confirm setup: Click "Confirm" to complete the 2FA setup process.
Important
Always save your backup codes in a secure location separate from your authenticator device. Without these codes, losing access to your authenticator app could permanently lock you out of your account.
Using 2FA for Login
Once 2FA is enabled, the login process will require the following steps:
- Enter your username and password
- When prompted, enter the 6-digit code from your authenticator app
- The code changes every 30 seconds, so use the most current code
What to Do If You Lose Access to Your Authenticator App
If you lose access to your authenticator app (e.g., lost phone or reset device), you can regain access to your account using one of these methods:
Using Backup Codes
Use one of the backup codes provided during 2FA setup. Each backup code can only be used once, so after regaining access, you should disable and re-enable 2FA to generate new backup codes.
Contact Support
If you've lost both your authenticator app and backup codes, contact NinjaSwap support. You'll need to complete an identity verification process, which may include providing ID documents and answering security questions.
Disabling 2FA
If you need to disable 2FA on your account:
- Navigate to Profile → Security → Two-Factor Authentication
- Click "Disable 2FA"
- Enter your current 2FA code and password to confirm
Tips for Managing 2FA Securely
- Use an authenticator app that offers cloud backup (like Authy) to prevent loss when changing devices
- Store backup codes in a password manager or secure physical location
- Consider setting up 2FA on multiple devices as a backup
- Always log out from shared or public computers
- Periodically verify your 2FA settings are up to date
We strongly recommend keeping 2FA enabled for the highest level of account security. If you have any questions or encounter issues with 2FA, pleasecontact our support team for assistance.