# Two-Factor Authentication

PenTest.WS supports Two-Factor Authentication and can to be enabled per-account. You'll need a third-party authenticator app such as Google Authenticator:

**Android**: <https://play.google.com/store/apps/details?id=com.google.android.apps.authenticator2>

**iOS**: <https://apps.apple.com/us/app/google-authenticator/id388497605>

## Enable Two-Factor Authentication

**URL:** <https://pentest.ws/settings>

Visit your Account Settings page to get started:

![Account Settings - 2FA](/files/7SqtsiOasjLF5qgYdMhC)

1. Click ![](/files/iSuG75G74GXCbDzjk4L6) in the Two-Factor Authentication section
2. Open your authenticator app
3. Scan the provided QR Code
4. Enter the One-Time Password to confirm everything is setup correctly
5. Click ![](/files/6G4s5GOaaN2B4AFf5c1P)

## 2FA Backup Codes

Once you have enabled Two-Factor Authentication for you account you'll be provided 2FA Backup Codes. Be sure to write these down, download them or print them out, and don't lose them. They are required if you lose control of your authenticator app.

![Settings - 2FA - Codes Show](/files/It2YzbnT5StpcdVAOl7W)

## 2FA Login

When logging into an account with 2FA enabled, you'll be presented with a Two-Factor Authentication prompt. Open your authenticator app and enter the one-time password.

![2FA Login](/files/aNuk2epFyTPcTkPXfpwh)

## 2FA Backup Code Login

If you need to use a backup code to login, click the "Use A Backup Code" link and enter one of your ten backup codes. Once you have used a code and logged in, it will no longer be available to use again.

![Login with Backup Code](/files/3h3v7QIeGSUEf8NdOf2U)

## Tier Availability

**Two-Factor Authentication** is available on all tiers.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.pentest.ws/authentication/two-factor-authentication.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.