Stripe

Support

How do I enable two-step verification?

With two-step verification enabled, your Stripe account is protected by an additional level of security. When logging in, you will need to enter both your password and a unique code from your mobile device. This will keep impostors out of your account even if they have your password. Keeping your Stripe account safe is important. If it’s compromised, your secret API keys, customer details, and transaction information would be vulnerable.

You can enable two-step verification in your Stripe account from your profile. There are two options for setting up two-step verification: either have a code texted to your phone or generated by the free Google Authenticator mobile app (available for iOS and Android). If you choose to enable both options, you will have the opportunity to select your preferred method when logging in.

Text message (SMS)

To set up your phone to receive codes via text:

  1. Click Add under the 2-step authentication section.
  2. Select Add SMS. You will be asked to enter your phone number. Enter your phone number and click Continue.
  3. You will be texted a unique security code. Enter that code to confirm that we’ve got the right phone number, and the setup process is complete! Note that it may take a minute or two to receive your security code.

In the future, each time you need to log in from a new location, we’ll text a code to your phone. You’ll need to enter that code to finish logging in. If you switch to a new phone number, you’ll need to disable two-step authentication before you do so, then re-enable it using your new phone number.

Google Authenticator

To set up two-step verification with Google Authenticator:

  1. Click Add under the 2-step authentication section.
  2. Select Add Google Authenticator. You will be asked to scan the barcode on your screen with your mobile device’s camera.
  3. Confirm the code that is shown on your device to finish the setup.

In the future, each time you need to log in from a new location, you’ll need to enter the code shown on your device. These codes are specific to that particular device and cannot be transferred. If you are going to switch to a new phone or wipe your phone, you’ll need to disable two-step authentication before you do so, then re-enable it using your new phone.

Backup code

At the end of either setup process, we’ll display an emergency backup code. This code is only displayed once, so be sure to write it down and store it somewhere safe. If your mobile device is ever lost or stolen, you can use this code to disable two-step verification on your account. If you lose your code but still have access to your account, you can generate a new emergency backup code from your two-step authentication settings. If you lose access to both your mobile device and your recovery code, you won’t be able to log in to your Stripe account.

Setting up two-step verification with FIDO U2F

Once you have enabled two-step verification via SMS or Google Authenticator, you have the additional option of adding one or more FIDO U2F security keys. Security keys are devices that connect to your computer via USB, Bluetooth, or NFC, and provide an additional form of two-step verification.

Note that FIDO U2F is only compatible with certain web browsers.

To set up two-step verification with a security key:

  1. Click Add under the 2-step authentication section. (Note: you must have already setup two-step verification by either SMS or Google Authenticator.)
  2. Select Add security key.
  3. When prompted, plug-in and tap your security key.
  4. Next, provide a name for your security key. This is a helpful way to tell them apart if you decide to add multiple security keys.

Was this answer helpful? Yes / No