Ask Dave Taylor
  • Facebook
  • Instagram
  • Linkedin
  • Pinterest
  • Twitter
  • YouTube
  • Home
  • YouTube Videos
  • Top Categories
  • Subscribe via Email
  • Ask A Question
  • Meet Dave
  • Home
  • Twitter Help
  • Enable Twitter 2-step account password verification? [Updated for 2023]

Enable Twitter 2-step account password verification? [Updated for 2023]

November 19, 2022 / Dave Taylor / Twitter Help / No Comments

I heard that Twitter supports two-step password account verification for user accounts. I’m not entirely sure what it is, but given how many people seem to have their Twitter accounts hacked, I’d love to learn more and set it up. What’s the scoop, Dave?

Great question! Anything that improves account security on any site is a good thing, and a popular social media service like Twitter is a definite target for hackers and other malicious online users. Better account security = good.

Note: I originally wrote this article back in June of 2013 but it’s sufficiently important that it’s been completely revised and updated for 2022 and beyond. Don’t just read it, implement it on your own Twitter account!

I’ve written extensively about 2-step verification, including how to set up 2-step verification for Facebook, 2-step verification for PayPal, and setting up 2-step security for Google Gmail.

WHAT IS TWO-STEP VERIFICATION?

But let’s back up a bit. When you have a regular online account, you have one-step verification and it’s based on “what you know”: an account and password pair. For Twitter, my account name is @DaveTaylor and my password is, um, well, secret. But it’s not that secret because someone with a wifi monitoring app could potentially pull it out of the network traffic if we’re both on the same network. So it’s “what I know”, but someone else could foreseeably learn it too and then gain unfettered access to my account. Bad.

Worse is that any savvy hacker immediately changes the account password and recovery methods so not only could they masquerade as me, they could lock me out of my own account. Muy malo.

A two-step verification system (also known as two-factor authentication) expands this to be both what you know and “what you have”: your mobile device. I’m rarely without my smartphone, and that’s a lot harder for someone to hack or duplicate, but with 2-step account verification setup I’ll need to both know secret information (what I know) and have my smartphone at my fingertips (what I have). Without both, the account/password pair by itself is useless and I’ll get a notification on my phone that someone’s trying to log in (which will immediately cause me to change my password!)

Standard Twitter accounts are one-step, of course, so if I told you my password, you could log in and do whatever you wanted, including changing the password to something I couldn’t guess. Bad news. So let’s set up that 2-step verification…

SET UP TWO-STEP VERIFICATION ON TWITTER

To start, log in to Twitter on your computer and, using the Web browser interface, click on the “••• MORE” link on the left side. This will bring up the “More” menu, from which you can choose “Settings and Support” then “Settings and Privacy”, then, finally, choose “Security and account access” on the left side. Here’s what you’ll soon see on the left side of the page:

twitter enable 2-factor 2-step authentication - settings

At this point click on “Two-factor authentication” to move to those specific settings…

twitter enable 2-factor 2-step authentication - two-factor authentication configuration and settings

As shown, there are three basic types of two-factor authentication, offering “what you have” access in addition to your existing (hopefully robust) password: Text messaging on your smartphone, an Authentication app, also on your smartphone, and a physical security key device. The latter is typically for companies that issue small gizmos that look like house keys but typically slip into a USB port on the computer. Very cool, but more complicated.

For 95% of users, either SMS text messaging or an Authentication app is the way to go. Or set up both, as I do!

SET UP TEXT MESSAGE AUTHENTICATION ON TWITTER

Let’s start with that text message authentication. Obviously, this means Twitter needs your current and correct smartphone number, but you probably already entered it when you signed up for Twitter in the first place. We’ll verify it in this step anyway.

Click on the box adjacent to “Text Message” and an explanatory message appears, complete with a hard hat!

twitter enable 2-factor 2-step authentication - protect 2-factor

Click on “Get started” and if you don’t have a cellphone number associated with your account it will prompt you to enter it. Once you do, or if you already have one associated, it’ll ask that you verify you have access to it:

twitter enable 2-factor 2-step authentication - confirm phone number

Ready?

Click “Send code” and within a few seconds you’ll receive an SMS text message similar to this I received on my iPhone:

twitter enable 2-factor 2-step authentication - confirmation code

Once you click “Send code” Twitter also moved to a window where it’s prompting you to enter that secret code:

twitter enable 2-factor 2-step authentication - enter code

Enter the code sent and you’ve confirmed your phone and enabled 2-step verification:

twitter enable 2-factor 2-step authentication - all set sms text 2fa

Done.

SET UP AN AUTH CODE APP LIKE “AUTHY” TOO

While you’re in the 2-step authentication setup area, I also recommend you enable and configure an AUTH app, which can be a good backup if for some reason you lose your phone number or it changes. They’re surprisingly easy to use and one of my favorites is AUTHY. Download your own favorite app to your smartphone, then go back to the main Two Factor Authentication screen, but this time choose “Authentication app”. The pop-up is subtly different:

twitter enable 2-factor 2-step authentication - app steps

If nothing else, we’ve lost our hard hat. Don’t tell OSHA, okay? 🙂

Click on “Get started” and the process will be rather different because you’re pairing a phone app with the Web site, and that’s done through a handy QR Code.

twitter enable 2-factor 2-step authentication - use app to scan qr code

For obvious reasons I have obscured my own QR code because, well, I don’t want you setting up an app for this task! Yours won’t have an ominous skull and crossbones superimposed.

Meanwhile, on the phone, the AUTHY app offers up a view of the accounts I already have enabled and a “+” button to add a new site pairing. A tap on the “+” and the app offers this info:

twitter enable 2-factor 2-step authentication - ready to scan qr code

No surprise, tap on “Scan QR Code” then point your phone at your computer screen so the QR code is front and center. It scans quickly and then allows you to set up a nickname for the authorization:

twitter enable 2-factor 2-step authentication - set authy nickname

I’m fine with the default, so a tap on “Save” and it’s ready to go, with a code that changes every 30 seconds:

twitter enable 2-factor 2-step authentication - authy app with code

That’s all that’s needed. Now any time I open up the AUTHY app and choose Twitter, I will get a 6-digit code that changes every 30 seconds in a way that Twitter itself recognizes; enter this code and I’m logged in!

LOGGING IN TO TWITTER WITH 2-FACTOR AUTHENTICATION

What’s it look like in action? Log out of your Twitter account and go to log in again. You’ll see the usual account and password pair prompt, where you will still need to enter both correctly. Now, however, when you’ve entered the “what you know” portion of your account verification process and clicked “Sign in”, something new happens:

twitter enable 2-factor 2-step authentication - texted login verification code

On your phone, an SMS text message will be received with a six-digit code (the “what you have” proof). Enter it, click “Submit” and you’re in. Want to use the Authentication app? Click on “Choose a different verification method” instead. Easy.

That’s it. Now you know how to set up two-factor authentication for Twitter, whether you prefer SMS text messages or an Authentication app. If you want better account security, sign up for 2-step verification on every single service that offers it, from iTunes to PayPal, Yahoo Mail to Google Mail. It’s just a good idea.

Pro Tip: I’ve been on Twitter since the early days and have written lots and lots of useful tutorials. Please check out my twitter help area for more useful guides. Oh, and why not follow me, @DaveTaylor, on Twitter too? Thanks!

About the Author: Dave Taylor has been involved with the online world since the early days of the Internet. Author of over 20 technical books, he runs the popular AskDaveTaylor.com tech help site. You can also find his gadget reviews on YouTube and chat with him on Twitter as @DaveTaylor.

Let’s Stay In Touch!

Never miss a single article, review or tutorial here on AskDaveTaylor, sign up for my fun weekly newsletter!
Name: 
Your email address:*
Please enter all required fields
Correct invalid entries
No spam, ever. Promise. Powered by FeedBlitz
Please choose a color:
Starbucks coffee cup I do have a lot to say, and questions of my own for that matter, but first I'd like to say thank you, Dave, for all your helpful information by buying you a cup of coffee!
2-factor authentication, twitter security

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Search

Recent Posts

  • How Can I Send My Friend a Voice Message via iMessage?
  • No, You Didn’t Just Win a Free Golf Cart from Lowe’s [Scam]
  • Handy Advanced Search Techniques for Microsoft Outlook.com
  • How Can I Rearrange Shortcuts on Android 13?
  • Comparison of the THREE Performance Monitors in Windows 11

On Our YouTube Channel

Mophie PowerStation XL 20W USB-C Charger -- REVIEW

FOSI Audio Waterproof Bluetooth Speaker B2 -- DEMO & REVIEW

Categories

  • AdSense, AdWords, and PPC Help (106)
  • Amazon, eBay, and Online Shopping Help (164)
  • Android Help (229)
  • Apple iPad Help (149)
  • Apple Watch Help (53)
  • Articles, Tutorials, and Reviews (346)
  • Auto Tech Help (17)
  • Business Advice (200)
  • ChromeOS Help (34)
  • Computer & Internet Basics (783)
  • d) None of the Above (166)
  • Facebook Help (384)
  • Google, Chrome & Gmail Help (188)
  • HTML & Web Page Design (247)
  • Instagram Help (49)
  • iPhone & iOS Help (626)
  • iPod & MP3 Player Help (173)
  • Kindle & Nook Help (99)
  • LinkedIn Help (88)
  • Linux Help (174)
  • Linux Shell Script Programming (90)
  • Mac & MacOS Help (914)
  • Most Popular (16)
  • Outlook & Office 365 Help (34)
  • PayPal Help (68)
  • Pinterest Help (54)
  • Reddit Help (19)
  • SEO & Marketing (82)
  • Spam, Scams & Security (97)
  • Trade Show News & Updates (23)
  • Twitter Help (222)
  • Video Game Tips (66)
  • Web Site Traffic Tips (62)
  • Windows PC Help (952)
  • Wordpress Help (206)
  • Writing and Publishing (72)
  • YouTube Help (47)
  • YouTube Video Reviews (159)
  • Zoom, Skype & Video Chat Help (62)

Archives

Social Connections:

Ask Dave Taylor


Follow Me on Pinterest
Follow me on Twitter
Follow me on LinkedIn
Follow me on Instagram


AskDaveTaylor on Facebook



microsoft insider mvp


This web site is for the purpose of disseminating information for educational purposes, free of charge, for the benefit of all visitors. We take great care to provide quality information. However, we do not guarantee, and accept no legal liability whatsoever arising from or connected to, the accuracy, reliability, currency or completeness of any material contained on this site or on any linked site. Further, please note that by submitting a question or comment you're agreeing to our terms of service, which are: you relinquish any subsequent rights of ownership to your material by submitting it on this site. Our lawyer says "Thanks for your cooperation."
© 2023 by Dave Taylor. "Ask Dave Taylor®" is a registered trademark of Intuitive Systems, LLC.
Privacy Policy - Terms and Conditions - Accessibility Policy