# How to secure your profile using 2FA

It's strongly recommended that you enable two-factor authentication (2FA) using either a time-based one-time password (TOTP) app, such as Google Authenticator, or SMS codes to enhance your profile’s security and protect it from unauthorized access.

{% stepper %}
{% step %}
In the B2CORE UI or app, navigate to **Profile** > **Security**.

{% hint style="info" %}
The names of menu items and other UI elements depend on your broker’s configuration and may differ from those shown in this guide.
{% endhint %}
{% endstep %}

{% step %}
In the **Two-Factor Authentication** section, enable one of the options:

* **Google Authenticator** — to use the Google Authenticator app or another compatible tool to generate time-based verification codes.
* **SMS Confirmation** — to receive time-sensitive verification codes on your phone number via SMS.

{% tabs %}
{% tab title="B2CORE UI" %}

<figure><img src="https://514898401-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FGoRxAprhHu1goANW7FXt%2Fuploads%2Fgit-blob-27f24b8e5b42a96c3a937aac2024419879276a43%2Ffront-office-2fa.png?alt=media" alt="Two-Factor Authentication"><figcaption><p>Two-Factor Authentication</p></figcaption></figure>
{% endtab %}

{% tab title="Mobile app" %}

<figure><img src="https://514898401-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FGoRxAprhHu1goANW7FXt%2Fuploads%2Fgit-blob-ed4c4d18d4a04d71fdea0d23351ec624154d7082%2Fios-2fa.png?alt=media" alt="Two-Factor Authentication" width="200"><figcaption><p>Two-Factor Authentication</p></figcaption></figure>
{% endtab %}
{% endtabs %}
{% endstep %}

{% step %}
Follow the onscreen instructions to complete the 2FA setup and verify that it's working correctly.
{% endstep %}
{% endstepper %}

Once 2FA is enabled, you’ll be prompted to enter a verification code each time you sign in to your profile after entering your credentials, as well as in other scenarios that require confirmation.