How do I configure two-factor authentication (2FA)?

Two-Factor Authentication (2FA), is an authentication process in which users must use two different 'factors' to verify their identity. At Ably, these two factors are your password (something you know), and a security token that is sent to your phone (something you have).

Two-factor authentication is currently unavailable on new Free accounts, but you can have 2FA by upgrading to a PAYG account. 

*If you have upgraded your free account to PAYG and require 2FA, please contact us at support@ably.com so that we can activate it for you (this requires a manual update).

How do I enable 2FA?

  1. Login
  2. Navigate to the Ably → My Settings page.
  3. Scroll down to the Two-factor authentication section, and click on the Enable two-factor authentication button. For security reasons, you will need to re-enter your password. If you have not previously set a password, you will be asked to set one.
  4. Select your country, enter your phone number, and click Next.
  5. You'll receive an SMS with a security token. Enter the token and click Verify security code.
  6. Scan the QR code into your Authenticator app (for example Authy, Google Authenticator or Window Authenticator).
  7. Enter the code generated by the 2FA application and click Verify two-factor token.
  8. Copy the generated recovery codes to a safe location (eg. print and store them in a safe).
  9. Press I have saved my codes.

How do I disable 2FA?

  1. Login.
  2. Navigate to the Ably → My Settings page.
  3. Scroll down to the Two-Factor Authentication section, and click on the Disable two-factor authentication button. For security reasons, you will need to re-enter your password.

How do I change my phone number?

To change your phone number simply disable 2FA, and re-enable it again with the new number.

How do I require 2FA for all account users?

As an account owner, you can require 2FA for all account users (Users who have not enabled two-factor authentication will be prompted to do so when they try to access the account).

Note: To require 2FA for the account users, the account owner should have 2FA enabled as well.

  1. Login.
  2. Navigate to the Ably → Account Settings page.
  3. Scroll down to the Authentication Settings section, and toggle the the Require two-factor authentication for all account users option.
  4. Click on the the Save authentication settings button.

How do I disable the 2FA requirement for all account users?

  1. Login.
  2. Navigate to the Ably → Account Settings page.
  3. Scroll down to the Authentication Settings section, and toggle the the Require two-factor authentication for all account users checkbox.
  4. Click on the the Save authentication settings button.

How do I upgrade from SMS 2FA to TOTP 2FA?

To upgrade from SMS 2FA to TOTP 2FA simply disable 2FA, and re-enable it again.

How do I log in if I lose access to my Authenticator app?

  1. Navigate to the Login page.
  2. Enter your email address and password.
  3. Click on the Login button.
  4. Click on the Use Recovery Code button.
  5. Enter one of the recovery codes that you saved during the setup process to the text field.
  6. Click on the Verify recovery code button.
  7. All your recovery codes will be regenerated. Make sure to save them in a safe place.
  8. Press I have saved my codes.