How To Secure Your GitHub Account with TOTP Authenticator
Github is the biggest code repository hub on the planet. It also acts as the backbone of major open-source repositories on the internet
Many companies and individuals depend on GitHub for their daily transactions. Thus keeping the GitHub account safe is a big responsibility.
One of the best ways to secure your GitHub account safe is to enable 2-factor authentication.
In 2-factor authentication, apart from your username and password, you also need to enter a randomly-generated code to access your account. This code can be generated via your phone or delivered to you via SMS.
Enabling 2-factor authentication is a simple process, which can decrease your risk percentage by up to 80%.
Here is how you can secure your GitHub account in less than 2 minutes using 2-factor authentication:
Install TOTP Authenticator
- Download the TOTP Authenticator app from the Apple App Store or Play Store.
Any service supported by Google Authenticator, Duo Mobile or Authy can be used with TOTP Authenticator. TOTP Authenticator provides a modern user interface and an offline backup feature compared to other authentication apps.
Find and Enable 2-Factor Authentication
2. Log in to your GitHub account and click on your Avatar in the top-right of the screen.
3. Click on ‘Settings’ in the dropdown menu.
4. Select ‘Security’ from the left side menu.
5. Click on ‘Enable two-factor authentication’ to begin the process.
6. Select ‘Set up using an app’ option.
You can also receive the codes via text messages, but that requires a reliable mobile network at all times.
7. A list of backup codes will be shown in the screen. Store them somewhere safe to restore account access in extreme cases in future.
Scan the Code
8. It’s time to switch to the phone now. Download the TOTP Authenticator if you haven’t already.
8. Open the TOTP Authenticator app and scan the QR code visible on the screen. Alternatively, you can enter the code and account details manually.
9. Once the above step is done, the account will be added to the list on the main screen. Each code is valid for 30 seconds, after which new code is generated.
10. Enter the passcode generated by the app into the field on the screen. Click Enable. Remember, the passcode changes every 30 seconds!
11. Congrats! You’ve successfully enabled 2-factor authentication. Now every time you log in, you’ll need to provide the passcode along with your password.
Note: It’s considered a good practice to backup your codes in case you lose access to the phone or need to switch it. This can be easily done via the ‘Backup and Restore’ functionality provided by the TOTP Authenticator app.
Happy and Secure Browsing!
More on 2-factor authentication:
What is 2-Factor Authentication and Why Should You Care?
Things You Should Know Before Enabling Two-Factor Authentication
