Top of Article
Contact us

Articles in this section

See more

2-factor authentication (2FA) in Dashlane Expand Sections

2-factor authentication (2FA) is a way to add an extra layer of security to your online life by requiring two steps when you log in to a website or app.

Dashlane uses 2FA in several different ways. We always require two steps when you sign in to Dashlane on a new device. You enter your Master Password, and we send a verification code to your contact email address. You enter this code and access your account. This process "authenticates" your device, so we know the device belongs to you.

But we also offer another kind of 2FA that you can turn on for specific logins or for your account as a whole. You download an "authenticator" app used for creating and storing tokens. When you log in to an account with 2FA turned on, we ask for a token stored in your authenticator app instead of a code sent to your email. When you use an authenticator app, the process is even safer than 2FA using email or text messages.

More about using Dashlane on a new device

More about 2FA

When you log in to a website or app, you use your password to prove that you are who you say you are. This process is called "single-factor authentication" because you prove your identity in one step by providing something that only you know.

2-factor authentication (2FA) requires two steps. First, you enter your password. Then you confirm your identity, usually by entering a token or code sent to your mobile device or email address.

2FA adds security to your online life because, to access your logins, you need a password that only you know and a mobile device that only you have.

Read the beginner's guide to 2FA on our blog

Protect your Dashlane account with 2FA

You can set up 2FA to add a layer of protection to your Dashlane account. First, you need to download an authenticator app for your mobile device, which you'll use to store the 6-digit tokens used in the 2FA process. This app is different from the main Dashlane app. We recommend the Dashlane Authenticator app, but you can use other apps as well.
More about the Dashlane Authenticator app

To use 2FA for your Dashlane account, select where you're using Dashlane.

Turn on 2FA for Dashlane with the web app

  1. Download the Dashlane Authenticator for your mobile device.

    Get the Dashlane Authenticator for Android
    Get the Dashlane Authenticator for iOS

  2. Log in to the Dashlane extension. You need to be logged in to the extension to manage 2FA in the web app. Then select Open the web app.

    in
  3. In the My account menu in the web app, select Settings, then Security settings, and then turn on 2-factor authentication. If asked, enter your Master Password and select Next.
  4. Choose whether to use 2FA every time you log in to Dashlane or only when you log in from a new device. Select Continue.

  5. Enter the phone number for your mobile device. If you get locked out of your account, we can send recovery codes by text to this number. Select Continue.

  6. In the next pop-up in the web app, you'll see a QR code and a setup code. Open the Dashlane Authenticator app on your mobile device. Select Add 2FA token. A camera opens. Use the camera to scan the QR code appearing in the web app. A 6-digit token appears in the authenticator app on your mobile device.

    If your device doesn't have a camera, select Enter setup code. Take the setup code from the web app and enter the code in the authenticator app on your mobile device. A 6-digit token appears in the authenticator app on your mobile device.

  7. In the web app, select Continue and then enter the token. Select Confirm.

  8. In the next pop-up in the web app, you'll see the recovery codes that you can use if you lose access to the authenticator app on your mobile device. Download the recovery codes and save them in a safe location. Select Done.

After you've turned on 2FA, you see a 2FA token for Dashlane whenever you open your authenticator app. Depending on your settings, we'll ask for this token every time you log in to Dashlane or only when you log in from a new device. The token refreshes every 30 seconds in the Dashlane Authenticator app, and the old token is no longer valid.

Sign in to the Dashlane extension and web app with 2FA

  1. Open the Dashlane extension, and enter your login email address. Dashlane asks for a 6-digit token from your authenticator app.
  2. Open the authenticator app on your mobile device to find the token. Enter the token in the extension, or select Use a recovery code and enter a recovery code. Then select Confirm.
  3. Enter your Master Password and select Log in. Then select Open the web app.

Important: Set all your devices to the same time. 2FA tokens expire every 30 seconds, and time differences between your devices can cause problems.

If you lose access to the phone you use for logging in with 2FA, you can use recovery codes as an emergency solution to log in and turn off 2FA. You can only use recovery codes in the web app.
Use recovery codes

Turn off 2FA for your Dashlane account with the web app

  1. Log in to the Dashlane extension. You need to be logged in to the extension to manage 2FA in the web app. Then select Open the web app.

  2. In the My account menu in the web app, select Settings, then Security settings, and then turn off 2-factor authentication.

  3. In the pop-up, select Yes, turn off.

  4. In the next pop-up in the web app, we'll ask for a 2FA token. Find the token in the authenticator app on your mobile device and enter the token in the web app. You can also select Use a recovery code and enter a recovery code. Then select Confirm. 2FA is now off for your Dashlane account.

    Important: You must complete the first four steps before moving on to the final step. Otherwise, you risk getting locked out of your account.

  5. Remove the 2FA token for Dashlane from your authenticator app. In the Dashlane Authenticator app, select the 3-dot menu and then Edit. Find the token for Dashlane and select the Edit icon, shown as a pencil. Select Remove token and then Yes, remove account.

If you lose access to the phone you use to log in using 2FA, you can use recovery codes as an emergency solution to log in and turn off 2FA. You can only use recovery codes in the web app.
Use recovery codes

Turn on 2FA for Dashlane with the Android app

To turn on 2FA with the mobile app, you need both the Dashlane Authenticator app and the main Dashlane password manager app. If you're using another authenticator app, you can only turn on 2FA for Dashlane in the web app.

    1. Download the Dashlane Authenticator for your mobile device.
      Get the Dashlane Authenticator for Android
    2. Open the main Dashlane app. Select Settings, then Security, and then turn on 2FA. If asked, enter your Master Password and select Next.
    3. Choose whether to use 2FA every time you log in to Dashlane or only when you log in from new devices. Select Next.
    4. Select Start setup and enter your mobile phone number. If you get locked out of your account, we can send recovery codes by text to this number. Select Next.
    5. In the next pop-up, you'll see the recovery codes that you can use if you lose access to the authenticator app on your mobile device. Select Save recovery codes and download the codes somewhere safe that isn't Dashlane. You can also select Skip to skip this step. We'll ask you if you saved the recovery codes or if you need to go back. If you saved them, select Yes.
    6. On the next page, select View my token to go to the Dashlane Authenticator app or Skip to go back to the Dashlane app.

After you've turned on 2FA, you see a 2FA token for Dashlane whenever you open your authenticator app. Depending on your settings, we'll ask for this token every time you log in to Dashlane or only when you log in from a new device. The token refreshes every 30 seconds in the Dashlane Authenticator app, and the old token is no longer valid.

For 2FA to work best, make sure you have biometrics turned on for the Dashlane Authenticator and the main Dashlane app. Biometrics is what you use to unlock your apps with your fingerprint. You can also use a PIN code.
Turn on biometrics for the Dashlane Android app

Sign in to the Dashlane Android app with 2FA

  1. In the Android app, enter your login email address. Dashlane asks for a 6-digit token from your authenticator app.
  2. Open your authenticator app to find the token. Then enter the token in the main Dashlane app.
  3. Enter your Master Password and select Log in.

Important: If you're using an authenticator app and the main Dashlane app on different devices, set both devices to the same time. 2FA tokens expire every 30 seconds, and time differences between your devices can cause problems.

If you lose access to the phone you use to log in using 2FA, you can use recovery codes as an emergency solution to log in and turn off 2FA. You can only use recovery codes in the web app.
Use recovery codes

Turn off 2FA for Dashlane with the Android app

  1. In the mobile app menu, select Settings, then Security, and then turn off 2FA.
  2. In the next pop-up, select Yes, turn off.
  3. In the next pop-up, enter the 2FA token from your authenticator app and select Next. 2FA is now off for your Dashlane account. The Dashlane Authenticator syncs with the main Dashlane app and removes your tokens automatically.

If you lose access to the phone you use to log in using 2FA, you can use recovery codes as an emergency solution to log in and turn off 2FA. You can only use recovery codes in the web app.
Use recovery codes

Turn on 2FA for Dashlane with the iOS (Apple) app

To turn on 2FA with the mobile app, you need both the Dashlane Authenticator app and the main Dashlane password manager app. If you're using another authenticator app, you can only turn on 2FA for Dashlane in the web app.

  1. Download the Dashlane Authenticator for your mobile device.
    Get the Dashlane Authenticator for iOS
  2. Open the main Dashlane app. Select Settings, then Security, and then turn on 2FA. If asked, enter your Master Password and select Next.

  3. Choose whether to use 2FA every time you log in to Dashlane or only when you log in from new devices. Then select Next.

  4. Select Start setup and enter your mobile phone number. If you get locked out of your account, we can send recovery codes by text to this number. Then select Next.
  5. In the next pop-up, you'll see the recovery codes that you can use if you lose access to the authenticator app on your mobile device. Select Save recovery codes and download them somewhere safe that isn't Dashlane. You can also select Skip to skip this step. We'll ask you if you saved the recovery codes or if you need to go back. If you saved them, select Yes.
  6. On the next page, select View my token to go to the Dashlane Authenticator app or Skip to go back to the Dashlane app.

After you've turned on 2FA, you see a 2FA token for Dashlane whenever you open your authenticator app. Depending on your settings, we'll ask for this token every time you log in to Dashlane or only when you log in from a new device. The token refreshes every 30 seconds in the Dashlane Authenticator app, and the old token is no longer valid.

For 2FA to work best, make sure you have biometrics turned on for the Dashlane Authenticator and the main Dashlane app. Biometrics is what you use to unlock your apps with Touch ID or Face ID. You can also use a PIN code.
Turn on biometrics for the Dashlane iOS app

Sign in to the Dashlane iOS app with 2FA

  1. In the Dashlane iOS (Apple) app, enter your Dashlane email address and Master Password and select Log in.
  2. Go to your authenticator app by pressing the iPhone main button twice or swiping up from the bottom of the screen to change apps. Select the 6-digit token to copy it to your clipboard.
  3. Go to the main Dashlane app, paste the 6-digit token, and select Log in.

Important: If you're using an authenticator app and the main Dashlane app on different devices, set both devices to the same time. 2FA tokens expire every 30 seconds, and time differences between your devices can cause problems.

If you lose access to the phone you use to log in using 2FA, you can use recovery codes as an emergency solution to log in and turn off 2FA. You can only use recovery codes in the web app.
Use recovery codes

Turn off 2FA for Dashlane with the iOS (Apple) app

  1. In the mobile app menu, select Settings, then Security, and then turn off 2FA.

  2. In the next pop-up, select Yes, turn off.
  3. In the next pop-up, enter the 2FA token from your authenticator app and select Next. 2FA is now off for your Dashlane account. The Dashlane Authenticator syncs with the main Dashlane app and removes your tokens automatically.

If you lose access to the phone you use to log in using 2FA, you can use recovery codes as an emergency solution to log in and turn off 2FA. You can only use recovery codes in the web app.
Use recovery codes

You can't turn 2FA on or off in the Dashlane Safari app. But you can sign in to the Safari app with 2FA if you first turn 2FA on in the web app or iOS (Apple) mobile app.

Dashlane can't autofill 2FA tokens in Safari. If you're using 2FA for specific logins in Safari, copy-paste your token from the extension pop-up or the mobile app.
More about Autofill in Safari

Sign in to the Dashlane Safari app with 2FA

  1. Launch the app from your dock or select the Dashlane icon in Safari. Select Open the app and then Log in. Enter your Dashlane email address and select Next.
  2. Open your authenticator app, and then enter the 6-digit token for Dashlane into the Token space on the Safari app.
  3. Enter your Master Password and select Log in.

Important: If you're using an authenticator app and the main Dashlane app on different devices, set both devices to the same time. 2FA tokens expire every 30 seconds, and time differences between your devices can cause problems.

If you lose access to the phone you use to log in using 2FA, you can use recovery codes as an emergency solution to log in and turn off 2FA. You can only use recovery codes in the web app.
Use recovery codes

Lost your phone? Use recovery codes to log in and turn off 2FA

When you first turn on 2FA, we ask you to save recovery codes. These codes are helpful if you lose the phone you use with 2FA. You can use the codes as a temporary solution to get into your account and turn off 2FA. You always need two recovery codes—one to log in and another to turn off 2FA.

Make sure to save your recovery codes on a device different from the device you use as an authenticator. That way, you'll still have access to your account if you lose your device.

Turn off 2FA with recovery codes

You can use recovery codes only in the web app.

  1. Open the Dashlane extension, and enter your login email address.
  2. Select Use a recovery code and enter a recovery code. Then select Confirm. You can also select Reset 2FA to get more recovery codes sent by text.

  3. Enter your Master Password and select Log in. Then select Open the web app.
  4. In the My account menu in the web app, select Settings, then Security settings, and then turn off 2-factor authentication.
  5. In the pop-up, select Yes, turn off. Then in the next pop-up, select Use a recovery code.

  6. Enter a recovery code. You need to use a different recovery code than the one you used for signing in. Then select Confirm. You can also select Reset 2FA to get more recovery codes sent by text.

When you turn 2FA off and back on, you get new recovery codes, and your old recovery codes won't work. To avoid confusion, delete any old recovery codes.

If you can't find your recovery codes, we can send more by text to the phone number you gave us when you first turned on 2FA. Go to our Reset 2FA page and follow the instructions.
Visit the Reset 2FA page

If you're part of a Starter, Team, or Business plan and need new recovery codes, you can ask your admin to generate them.
More about how admins generate codes

Protect specific logins with 2FA

You can add a layer of protection to your most important logins saved in Dashlane. You can turn on 2FA for a specific login in the main Dashlane app or the Dashlane Authenticator app. When you turn on 2FA for a specific login in one app, the other app automatically syncs, and you can find your 2FA tokens in both places.

Get the Dashlane Authenticator for iOS
Get the Dashlane Authenticator for Android

To use 2FA for specific logins, select the app you're using.

Turn on 2FA for a specific login in the Dashlane Android app

Not all websites and apps can use Dashlane apps as 2FA authenticators. Some require other authenticator apps or sending codes by email or text message.

  1. Select the login you want to add 2FA protection for, and then select the Edit icon, shown as a pencil.
  2. Select Set up in the 2-factor authentication section of the edit page. You can also go to the Tools section of the Android app and select the Authenticator tab. Then select Add 2FA token.
  3. Go to the security settings of the website or app you want to protect with 2FA. Follow the steps to turn on 2FA. These steps will vary depending on the website or app, but the steps should lead to a QR code or a number setup code.

    Example from Twitter:

  4. In the Dashlane mobile app, select Scan QR code, and then scan the QR code with the camera on your phone. Or select Enter setup code, enter the code that the website or app gives you, and select Next.
  5. Select Ok, got it. Then select the Save icon, shown as a checkmark, to save changes to the login. When you select the login again, a 6-digit token appears. You might need to enter this token on the website or app you want to use with 2FA.

Turn off 2FA for a specific login in the Dashlane Android app

  1. Go to the website or app you want to turn off 2FA for. Access the security settings of the site or app and turn off 2FA.

    Important: You must complete this step before moving on to the next step. Otherwise, you risk getting locked out of your account.

  2. Find the login in Dashlane and select the Edit icon, shown as a pencil. In the 2-factor authentication section, select Remove. You can also go to the Tools section of the Android app and select the Authenticator tab. Select the Edit icon, shown as a pencil. Then select the Remove icon, shown as a trash can, for the login you want to remove.
  3. Confirm by selecting Yes, remove 2FA. Then select the Save icon, shown as a checkmark, to save the login.

Turn on 2FA for a specific login in the Dashlane iOS (Apple) app

Not all websites and apps can use Dashlane apps as 2FA authenticators. Some require other authenticator apps or sending codes by email or text message.

  1. Select the login you want to add 2FA protection for, and then select Edit.
  2. On the edit page, select Add 2FA token. You can also go to the Tools section of the iOS (Apple) app and select the Authenticator tab. Then select Add 2FA token.
  3. Go to the security settings of the website or app you want to protect with 2FA. Follow the steps to turn on 2FA. These steps will vary depending on the website or app, but the steps should lead to a QR code or a number setup code.
  4. In the Dashlane mobile app, select Scan QR code, and then scan the QR code with the camera on your phone. Or select Enter setup code and then enter the code that the website or app gives you and select Next.
  5. Select Ok, got it. Then select the Save icon to save changes to the login. When you select the login again, a 6-digit token appears. You might need to enter this token on the website or app you want to use with 2FA.

Turn off 2FA for a specific login in the Dashlane iOS (Apple) app

  1. Go to the website or app you want to turn off 2FA for. Access the security settings of the site or app and turn off 2FA.

    Important: You must complete this step before moving on to the next step. Otherwise, you risk getting locked out of your account.

  2. Find the login in Dashlane and select Edit. Select the 6-digit 2FA token on the edit page, and then select Remove from Dashlane. You can also go to the Tools section of the iOS (Apple) app and select the Authenticator tab. Select Edit, and then Remove from Dashlane.
  3. Confirm by selecting Remove from Dashlane again, and select Save to save changes to the login.

Turn on 2FA for specific logins with the Dashlane Authenticator

Not all websites and apps can use Dashlane apps as 2FA authenticators. Some require other authenticator apps or sending codes by email or text message.

  1. Go to the security settings of the website or app you want to protect with 2FA. Follow the steps to turn on 2FA. These steps will vary depending on the website or app, but the steps should lead to a QR code or a number setup code.
  2. In the Dashlane Authenticator app, select Add 2FA token and then Scan QR code. Then scan the QR code with the camera on your phone. The Dashlane Authenticator app might ask you to select the account you want to set up with 2FA.
  3. Select the correct account, and then select Ok, that's done. A token appears in the Dashlane Authenticator app. You might need to enter this token on the website or app you want to use with 2FA.

Turn off 2FA for specific logins with the Dashlane Authenticator

  1. Go to the website or app you want to turn off 2FA for. Access the security settings of the site or app and turn off 2FA.

    Important: You must complete this step before moving on to the next step. Otherwise, you risk getting locked out of your account.

  2. In the Dashlane Authenticator app, select the 3-dot menu and then Edit.
  3. Find the token you want to remove and select the Edit icon, shown as a pencil. Select Remove token and then Yes, remove account.

The Dashlane Authenticator app automatically syncs with the main Dashlane app, so you'll have access to your tokens for specific logins in both places. When you remove a token in the Authenticator, the token disappears from the main Dashlane app.
More about the Dashlane Authenticator

Common questions

Questions about your phone and codes

What happens if I lose the phone I use to log in to Dashlane using 2FA?

If you lose access to the phone you use to log in using 2FA, you can use recovery codes as an emergency solution to log in and turn off 2FA. You can only use recovery codes in the web app.

It's best to save your recovery codes on a device other than the one you use as an authenticator. That way, you can use the codes to log in if you lose your device.

Use recovery codes to login and turn off 2FA

What happens if I lose my recovery codes?

If you lose your recovery codes, you can get more by text message on the phone number you entered when you turned on 2FA.

Visit the Reset 2FA page to get more codes

Can I change the phone number where Dashlane sends my recovery codes?

If you want to change the phone number where we send your recovery codes, you need to turn 2FA off and back on again. When you turn 2FA back on, enter the phone number where you want to receive the recovery codes.

Questions about authenticator apps

What is an authenticator?

An authenticator is an app for your mobile device that you use to prove your identity when you log in to an account with 2FA turned on. When you try to log in, you're asked for a 2FA token stored in your authenticator app. The tokens change every 30 seconds.

You can use the Dashlane Authenticator app to protect your Dashlane account or specific logins. You can also use the main Dashlane app as an authenticator to protect specific logins.

Can I use an authenticator app that isn't Dashlane Authenticator to protect my Dashlane account?

Yes, you can use any authenticator that uses TOTP technology. TOTP stands for "time-based one-time password," which is a technical way of saying that the token changes regularly.

If you use an authenticator app that isn't Dashlane Authenticator, the setup process might differ slightly from what we describe in this article.

Can I use the main Dashlane app as an authenticator to protect my Dashlane account?

No, this would be like locking the keys to your car inside the car. You can use the main Dashlane password manager app as an authenticator for other logins, and you can use the Dashlane Authenticator app to protect your Dashlane account with 2FA.

More about the Dashlane Authenticator

Can I use 2FA if I don't have a mobile device?

Yes. If you don't have a mobile device to use as an authenticator, you can use a desktop authenticator app like WinAuth.

Download WinAuth

Can I use a security key with 2FA?

You can't use a physical security key as a second factor for 2FA in Dashlane—a process sometimes referred to as Universal 2nd Factor (U2F). However, you can use a security key to unlock the Dashlane web app, an alternative to entering your Master Password that we call "local unlock."

Local unlock for the web app

Questions about 2FA access and settings

How do I change my 2FA settings?

When 2FA is turned on for your Dashlane account, you can access 2FA settings from the My account menu of the web app. Select Settings, then Security settings, and then View options.

If you want to change how you use 2FA—only on new devices or every time you log in to Dashlane—you need to turn 2FA off and back on again. When you turn 2FA back on, choose the setting you want.

Why do I have a setting called "Disable 2FA"?

This setting is available only in the Android app.

When you turn on 2FA with your Android device and choose to use 2FA every time you log in, you'll see a new option in your security settings—Disable 2FA.

When Disable 2FA is turned on, we won't always ask for a 2FA token when you sign in to Dashlane on your Android device. If you want us to ask you for a 2FA token every time you use Dashlane on this device, turn off Disable 2FA.

Can I access Dashlane without an internet connection with 2FA turned on?

If you haven't turned on 2FA for every time you log in, you can access Dashlane without the internet on devices you've already authorized.

More about authorizing new devices

Can I use 2FA if I have Dashlane through my work?

Dashlane Starter, Team, and Business plan members can use 2FA to protect their Dashlane account. However, if you use single sign-on (SSO) to access Dashlane, you need to contact your plan's admin to use 2FA. With SSO, 2FA is managed by your identity provider and not Dashlane.

More about SSO

Questions about 2FA tokens

When I share a login with 2FA turned on, do I share my tokens too?

When you've turned on 2FA for a login and share that login using Dashlane's secure sharing feature, you also share the tokens. The person you share with will see the tokens for that login in the Authenticator tool of the main Dashlane app. If they have the Dashlane Authenticator, they'll also see the tokens in that app.

More about secure sharing in Dashlane

What happens to my tokens saved in Dashlane when I export my data?

If you export your data in a secure DASH file, you export your 2FA tokens as well.

Export your data in a DASH file

Can I autofill 2FA tokens?

You can autofill 2FA tokens for specific logins with the Dashlane mobile app. When you log in to a site or app with 2FA set up, a pop-up appears saying your code is ready to paste. Select paste in the space for the code. Dashlane autofills your token.

Autofill is turned on automatically for the Android app. To turn on autofill on an iOS (Apple) device, go to Settings, select General, and turn on Copy 2FA token automatically.

Does Dashlane have access to my 2FA tokens?

No. We back up your tokens on our servers and encrypt them with the rest of your data. That means we store your tokens, but we can't see them. You can access them from any device you use Dashlane on.

More about security at Dashlane

Was this article helpful?
1043 out of 2293 found this helpful
Thank you! Your feedback helps us improve this article for everyone.

In this Article

Articles in this section

Related articles

Can't find what you're looking for?

Contact us
Powered by Zendesk