Skip to content
English - United States
Contact us
  • There are no suggestions because the search field is empty.

What is two-factor authentication (2FA) and how do I enable it?

Disclaimer: ActBlue user roles and permissions dictate what users can do on our platform. If the tools or features mentioned in this article are unavailable to you, please speak to your Dashboard Admin(s) about updating your permissions. 

In this article:

  1. What is 2FA and why is it important?
  2. How do I set up 2FA with Google Authenticator?
  3. Where can I find my six-digit 2FA code? 
  4. Can I use another authenticator? 
  5. What are backup codes and how do I access them?
  6. I received an email or pop-up prompt telling me that 2FA is now required to access my Dashboard. Why? 

What is 2FA and why is it important?

Two-factor authentication (or 2FA) is an extra layer of account security that requires users to provide two separate pieces of verification in order to confirm their identity.

After filling out a username and password, 2FA commonly requires users to enter an additional authentication code that a phone app (ex. Google Authenticator) randomly generates.

Besides securing routine logins, 2FA can also safeguard your account from unfamiliar log-ins. When logging in from a new device, 2FA will require you to provide an authenticator code in additional to your username and password, making it much harder for someone to impersonate you and access your account.

Because security is a top priority at ActBlue, we strongly recommend campaign and organization Admins require 2FA for all users who access their Dashboard.

We also recommend using the Google Authenticator app for the safest, most secure experience possible. Google Authenticator is a time-based one-time password (TOTP) app that significantly upgrades your account’s security using algorithms to produce authentication codes. When you use Google Authenticator, you will not receive text messages or voice calls as part of the verification process as those methods are vulnerable to social engineering attacks.

How do I set up 2FA with Google Authenticator?

To set up 2FA with Google Authenticator, you'll first want to sign into your ActBlue account and then click the Manage tab at the top of the page. From the Manage dropdown provided, click Enable Two-Factor Authentication:

 

Screenshot showing an alert that says protect yourActBlue account, enable two-factor authentication.

 

You can also begin the 2FA set-up by following a similar prompt displayed at the top of your Dashboard:

Screenshot showing an alert that says time to sign up for two-factor authentication.

 

If you don't see either prompt, you can enable 2FA by clicking the Manage tab at the top of the page and then selecting Settings from the dropdown:

 

Screenshot showing a red box around the settings button within the manage dropdown menu.

 

From the Settings page, simply click the blue Enable button beside Two-factor authentication to get started:

 

Screenshot showing a blue button users can click to enable two-factor authentication.

 

Following any of these methods should bring you to the 2FA enablement page where you'll find additional instructions on how to download Google Authenticator to your device: 

 

Screenshot that shows steps to download an authenticator app within the Google Play or Apple app store and recommends the Google Authenticator app.

In the current Apple App Store, the Google Authenticator icon should look like this: 

Screenshot 2026-03-03 at 3.53.54 PM

Once you've successfully downloaded Google Authenticator, open the app, select Add a Code, and  then select Scan a QR Code:

Screenshot 2026-03-03 at 3.54.26 PM

Screenshot 2026-03-03 at 3.54.52 PM

Using your device's camera, scan the barcode displayed on the ActBlue page. You will need to align the yellow box shown on your device's screen with the bar code shown in order to move to the next step. 

Screenshot showing an example of a QR code that can be scanned within an authenticator app.

Once your device's camera is successfully aligned with the bar code, the Google Authenticator app will generate a six-digit code likely titled ActBlue. Enter this code into the box at the bottom of the ActBlue screen and then click the blue Verify and Enable button to complete your 2FA set-up:

Screenshot showing a box to enter the verification code and a button that says verify and enable.

Going forward, you will now be intermittently prompted to enter a six-digit code generated by the Google Authenticator app when you sign into ActBlue. Please note this code is not a static number and will change regularly. 

Where can I find my six-digit 2FA code?

Once you've successfully set up 2FA on your ActBlue user profile, you will need to use the codes generated by your linked authenticator app in order to sign in. Unlike OTP codes, 2FA codes will not be sent via text or email. 

To access your 2FA codes, simply open up your phone's linked authenticator app (in this case, Google Authenticator), locate the six-digit code displaying underneath the ActBlue heading, and then enter this code into the ActBlue sign in screen where prompted: 

Screenshot 2026-03-03 at 3.55.25 PM

 

Screenshot 2026-03-03 at 3.55.46 PM

Can I use another authenticator? 

If you already use another 2FA app like Authy and prefer not to switch to Google Authenticator, we strongly recommend disabling the Authy Multi-Device feature. This feature makes your account vulnerable to social engineering attacks. 

Using 2FA with Google Authenticator tends to be the most accessible method for ActBlue users. Our platform also supports YubiKeys (a physical device you insert into your computer, similar to a USB drive). YubiKeys users can now log in to ActBlue with codes generated by the Yubico Authenticator desktop app for 2FA.

What are backup codes and how do I access them?

Backup codes are static codes you can use to log into your 2FA-protected account in the event you lose your device or don't have access to your authenticator app. 

Backup codes will automatically generate and display after you set up 2FA in the following pop-up:

Screenshot showing where to download or copy backup codes, and notes that backup codes can be used only once, new codes can be generated, and that these codes should be stored somewhere safe, such as a password manager.

You can also generate and view your backup codes by clicking the Manage tab, selecting Settings, and then selecting the Security tab:

Screenshot of a red box around a button that says settings under a dropdown menu entitled manage.

The Security tab will show you whether you’ve turned on 2FA, enabled TOTP, and/or generated backup codes for your account. To generate backup codes from this page, simply click the blue Generate button provided:

Screenshot showing that two-factor authentication is enabled, a link to generate new backup codes, and a link to switch to a new device.

Next, verify your identity with a temporary code or your current password. If you created your ActBlue account using a Gmail- or Gmail-affiliated email address and do not have an ActBlue password, you will only see the option to use a temporary code. 

Screenshot that shows options for verifying your identity, including emailing a temporary code and entering your password.

If you use a temporary code, a pop-up will instruct you to check your email for the code. The email will look something like this:

Screenshot that shows an email that contains a temporary code.

Enter the temporary code and click Generate Codes to continue to your backup codes:

Screenshot with a red arrow pointing to a box where a temporary code can be entered and another red arrow that points to a button that says generate codes.

In the pop-up provided, you will also have the option to use your account password to verify your identity:

Screenshot that shows options to verify your identity with a red arrow pointing to the enter your password option.

Enter your password and then click Generate Codes:

Screenshot of where to generate backup codes with a red arrow pointing to a box where a password can be entered and another red arrow pointing to a button that says generate codes.

Following either method will result in a pop-up with your backup codes appearing. You must save these backup codes immediately after generating them.

To save them on your computer as a CSV file, click the blue Download button.

We recommend clicking the blue Copy button and then pasting your codes into a secure password manager like 1Password rather than your computer’s Downloads folder. 

Screenshot that shows example backup codes with a red box around both the download and copy buttons.

After generating backup codes for your ActBlue account, you should get an email from ActBlue Security Alerts confirming backup codes were generated. 

Please note that each backup code is for one-time use only meaning you can't use the same backup code twice to access your account. If you are running low on backup codes, you can generate a new batch anytime. You will also need to generate new codes if you change your two-factor authentication device

I received an email or pop-up prompt saying 2FA is now required to access my Dashboard. Why?

If you received an email or pop-up prompt saying that 2FA is now required to access a Dashboard, this means an Admin user on your Dashboard has opted to require 2FA for all users. 

In order to access your Dashboard, you will need to set up 2FA on your account as soon as possible using the prompts provided or the instructions found above. 

If you're an Admin user looking to require 2FA across your Dashboard, check out this guide for more information!