A Time-based One-Time Password (TOTP) application automatically generates an authentication code that changes after a certain period of time. We strongly recommend using a TOTP application to configure 2FA. TOTP applications are more reliable than SMS, especially for locations outside the US.

Tip: To configure authentication via TOTP on multiple devices, during setup, scan the QR code using each device at the same time. If 2FA is already enabled and you want to add another device, you must re-configure 2FA from your security settings.

  1. Download one of these apps.
  2. In the top right corner of any page, click . Settings icon in the user bar
  3. In the user settings sidebar, click Security. Security settings sidebar

  4. Under Two-Factor Authentication, click Set up two-factor authentication. 2FA dialog box

  5. On the Two-Factor Authentication page, click Set up using an app.
  6. On the "Add GitHub to your two-factor authentication app" page, do one of the following:
    • Scan the QR code
    • Manually type the security code into your TOTP application. If you're using Microsoft Authenticator, you'll need to use this method. QR code page
  7. The TOTP mobile application will save your GitHub Enterprise account and generate a new authentication code every few seconds. In GitHub Enterprise, on the 2FA page, type the code and click Enable. TOTP Enable field
  8. Download your recovery codes and save them in a safe place, such as a password manager. Your recovery codes are to be used in the event you lose access to your account. Download recovery codes button

Tip: After 2FA has been enabled and you've saved your recovery codes, we recommend you sign out and back in to your account. In case of problems, such as a forgotten password or typo in your email address, you can use recovery codes to access your account and correct the problem.

Further reading