Protect your account using Two-Factor Authentication
To increase the security of your account, Two-Factor Authentication can be enabled from the Preferences of the Dashlane application. An additional code will then be required each time you need to authorize a new device to access your account, or even each time you log in to your account (that is for you to choose). Please note that Two-Factor Authentication completely replaces the security codes which would be normally sent to you by e-mail when authenticating a new device, or resetting/deleting your account.
If you have a U2F Security Key and a Premium subscription, you can add this key to your Dashlane account for an extra layer of security and convenience. Please click here for more information!
- What is Two-Factor Authentication?
- How to enable Two-Factor Authentication step-by-step
- How to sign-in to your Dashlane account if Two-Factor Authentication is enabled
What is Two-Factor Authentication?
Two-Factor Authentication (2FA) is a feature that will keep your account even safer in the event someone manages to get access to your master password. With 2FA, a hacker will not be able to access your data unless they also have a hold of the device you set up Two-Factor Authentication with. Of course, this means that you must always have access to that device (or the back-up solutions that we offer when activating Two-Factor Authentication!)
Two-Factor Authentication needs to be activated on your desktop, using at least Dashlane 2.0 on either Windows or Mac OS X. Two-Factor Authentication cannot be activated from an iOS device (iPhone, iPad, iPod) or from an Android device.
You need to have any TOTP-based mobile authenticator installed on your mobile device to enable the Two-Factor Authentication feature in Dashlane. You can install any authenticator, however, a few examples are Authy (for iOS and for Android), Google Authenticator (for iOS and for Android), and FreeOTP (for iOS and Android). If you do not have a mobile device, you can, for instance, use WinAuth.
How to enable Two-Factor Authentication
To enable Two-Factor Authentication, go to Tools → Preferences on Windows or select Dashlane → Preferences on Mac OS X.
Open the Security tab, and click on the Two-Factor Authentication sub-tab. Here, click on the lock icon at the bottom of the window to unlock the Settings (you will be prompted to enter your master password), then click on the switch to enable Two-Factor Authentication
Choose one of the two different security levels available for Two-Factor Authentication:
Only when I add a new device to my account means that you will need to authenticate yourself via your second factor only when an unauthorized device is used to access your Dashlane account. Once authenticated, we will never ask you to repeat this step on that device.
Each time I log into Dashlane is the most secure setting. You will need to authenticate yourself via your second factor each time your Dashlane account is accessed.
Note: you will need to disable Two-Factor Authentication and re-enable it altogether if you wish to switch between security levels.
Now it is time to use your Two-Factor Authentication app! We are going to use Google Authenticator here, but all Two-Factor Authentication apps normally work like this. Open the Two-Factor Authentication app on your mobile device, tap on the Menu icon located at the top-right corner and choose Set up account to add a new entry. If it’s your first time using a Two-Factor Authentication app, you should be able to add a new entry by choosing Begin setup at the bottom.
Tap on Scan a Barcode if your mobile device has a camera. If your mobile doesn’t have one, choose Enter provided key instead.
Then, flash the QR bar code that is currently displayed by Dashlane with your mobile's camera, or manually enter your Dashlane email address and the secret key displayed above the QR code into your Two-Factor Authentication app. In any case, your Two-Factor Authentication app should then start generating 6-digit codes that change every 30 seconds.
Enter the code generated by your app into the field provided by Dashlane.
Dashlane will then offer you two different back-up solutions in case you lose your mobile device or cannot use it anymore:
Choose a back-up phone number. If you lose your mobile device, we will send a code to that number that will allow you to disable Two-Factor Authentication. The back-up number cannot be changed later unless Two-Factor Authentication is disabled in your Dashlane account. If you have changed your cell number, you need to disable Two-Factor Authentication first and then re-enable it with your new phone number.
The other way of disabling Two-Factor Authentication is to use one of the unique back-up codes you will be provided with. Use one of them (in addition to your master password) instead of your second factor to temporarily bypass the Two-Factor Authentication and access your account. Note that each of back-up code can only be used once!
Make sure to save these codes as a TXT document for later use.
Two-Factor Authentication should then be set-up with your account!
How to sign-in to your Dashlane account if Two-Factor Authentication is enabled
Now that Two-Factor Authentication is all set-up, you can start using it!
On Windows or Mac OS X
- To log in to Dashlane, open Dashlane and first enter your Dashlane email address;
- Enter your master password and click on Log in;
- At last, enter the 6-digit security code that has just been generated by your Two-Factor Authentication app on your mobile device (example above) and click on Log in once again.
- To log in to Dashlane on iOS, open Dashlane and first enter your Dashlane email address;
- Then enter your master password and tap on Log in;
- Now switch from Dashlane to your Two-Factor Authentication app by pressing the iPhone main button twice;
- Tap once on the 6-digit code in your Two-Factor Authentication app to copy it to your clipboard;
- Finally, switch back to Dashlane, paste the 6-digit security code there and tap on Log in.
If your security code does not work, make sure it is still valid in the application and that you do all this quickly enough, as new codes are generated every 30 seconds by your Two-Factor Authentication app.
- To log in to Dashlane on Android, open Dashlane and first enter your Dashlane email address;
- Then enter your master password and tap on Log in;
- Now switch from Dashlane to your Two-Factor Authentication app in order to get a valid 6-digit security code;
- Tap on the code in your Two-Factor Authentication app to copy it;
- Finally, switch back to Dashlane, paste the 6-digit security code and tap on Log in.
If Google Authenticator codes are not working on Android, this might be because the time on your Google Authenticator application is not synced correctly. Please click here and go to the last section to see how to make sure you have the correct internal time for Google Authenticator.
On the Web app
- To log in to Dashlane using the Web app, first provide your Dashlane email address and click on Log in;
- Now open your Two-Factor Authentication app on your mobile device;
- Copy the 6-digit code shown in your Two-Factor Authentication app into the Security code field on the Web app;
- Finally, enter your master password in the first field, then choose a name for this computer or device if you wish (e.g. My laptop, Jim's computer) and click Log in.
How to disable Two-Factor Authentication
This can only be done from Dashlane on Windows or Mac OS X.
You will need to use your Two-Factor Authentication app one last time in order to disable Two-Factor Authentication. If you have lost your phone or tablet and cannot use your Two-Factor Authentication app anymore, click here to learn how to use one of your back-up solutions instead.
Go to the Security tab in Dashlane's Preferences, and to the Two-Factor Authentication sub-tab
Unlock the settings by clicking on the lock icon at the bottom left corner of the window;
Click on the switch to disable Two-Factor Authentication
Confirm that you only want to use your Dashlane ID and master password to open your account now;
Enter the code currently displayed in your Two-Factor Authentication app or one of your back-up codes and click on Next;
Two-Factor Authentication is now disabled!
Note that after Two-Factor Authentication has been disabled, you will have to re-authenticate all your other devices using our standard security code system that works by e-mail.