How do I enable two-step verification?
With two-step verification enabled, your Stripe account is protected by an additional level of security. When logging in, you will need to enter both your password, and a unique code from your mobile device. This will keep impostors out of your account, even if they have your password. Keeping your Stripe account safe is important, because if it were to be compromised, your secret API keys, customer details, and transaction information would be vulnerable.
There are two options for setting up two-step verification: you can either have a code texted to your phone or generated by the free Google Authenticator mobile app (available for iOS and Android. You can enable two-step verification in your Stripe account from your account settings. Here’s a quick demo:
To set up your phone to receive codes via text, select SMS and then enter your cell phone number, we’ll then text you a unique security code. Enter that code to confirm that we’ve got the right phone number, and the setup process is complete!
In the future, each time you need to log in from a new location, we’ll text a code to your phone. You’ll need to enter that code to finish logging in. If you switch to a new phone number, you’ll need to disable two-step authentication before you do so, then re-enable it using your new phone number.
To set up two-step verification with Google Authenticator, select the option and scan the barcode on your screen with your mobile device’s camera. You’ll then be asked to confirm the code that is shown on your device to finish the setup. In the future, each time you need to log in from a new location, you’ll need to enter the code shown on your device. These codes are specific to that particular device and cannot be transferred. If you are going to switch to a new phone or wipe your phone, you’ll need to disable two-step authentication before you do so, then re-enable it using your new phone.
At the end of either setup process, we’ll display an emergency backup code. This code is only displayed once, so be sure to write it down and store it somewhere safe. If your mobile device is ever lost or stolen, you can use this code to disable two-step verification on your account. If you lose your code but still have access to your account, you can generate a new emergency backup code from your two-step authentication settings. If you lose access to both your mobile device and your recovery code, you won’t be able to log in to your Stripe account.