Two-factor authentication (2FA)

Two-factor authentication (2FA) protects your account by requiring both your password and a one-time verification code from an authenticator app when signing in. This makes it much harder for unauthorized users to access your account, even if they know your password.
​

Some organizations require 2FA for all members. If you belong to such an organization, enabling 2FA is necessary to keep access to shared resources and comply with security requirements.
​

Open Settings > Login & Privacy in Apify Console.
​

The Two-factor authentication section shows the available verification method. Apify uses secure verification through an authenticator app to protect your account.

If 2FA is already enabled, it is marked as Enabled. To start the setup, click Enable and follow the on-screen instructions.

During setup, Apify displays a QR code. Scan the code with your preferred authenticator app on your mobile device.
​

Apify uses the standard time-based one-time password (TOTP) protocol. Most TOTP-compatible authenticator apps work without additional configuration. Common examples include:

If you cannot scan the QR code, click Setup key. A dialog opens with a secret key. Copy the key and manually enter it into your authenticator app. The same key can be used to configure multiple devices.

After setup, enter the one-time code generated by the app into the Verify the code from the app field and click Continue.

During 2FA setup, Apify generates 16 recovery codes. These codes let you sign in if you lose access to your authenticator app. Each code can be used only once.

Save your recovery codes in a secure place, such as a password manager. Avoid storing them on the same device as your authenticator app.

You also need to provide two pieces of recovery information. Apify Support uses this information only as a last resort if you lose access to both your authenticator app and recovery codes. The information does not need to be personal, but it should be secure and easy to remember. Avoid using information that is publicly available.

You cannot complete 2FA setup until you download, copy, or manually confirm your recovery codes. Once done, click Continue to enable two-factor authentication.

If two-factor authentication (2FA) is enabled, you’ll see the Enabled badge in the Two-factor authentication section under Login & Privacy.

When signing in to Apify Console:

A valid code signs you in.
​

If you lose access to your authenticator app:

After signing in, disable 2FA and set it up again with a new authenticator app.

Using a recovery code permanently removes it from the list.

If you use all recovery codes, you must sign in using your authenticator app or contact Apify Support.

To disable 2FA:

After disabling 2FA, you no longer need a verification code to sign in.

If you lose access to both your authenticator app and all recovery codes, you cannot sign in without help.

Contact Apify Support:

Apify Support will ask for the recovery information configured during setup. If verified, your account access is restored.

You can review your recovery information at any time in Login & Privacy > Two-factor authentication > Recovery settings. Authentication is required.
​