How to Secure Your Gmail With Two-Step Authentication

A young woman using laptop and phone
Aping Vision/STS/Photographer's Choice RF/Getty Images

2-step authentication helps protect your Gmail account from hackers; guessing your password is no longer enough to hack into it.

One More Step for Security

Your Gmail password is long and silly, difficult to guess; your every computer is protected from malware and key-loggers that could snoop on your typing that password as you log on to Gmail. Still, more protection is better and two codes better than one — especially if one can only come through your phone, right?

With two-step verification, you can set up Gmail to require a special code for login in addition to your password. The code comes through your phone and is valid for 30 seconds.

Secure Your Gmail Account with Two-Step Authentication (a Password and Your Phone)

To have Gmail ask you for a remembered password and a code sent to your mobile phone to log in for enhanced security:

  1. Click your name or photo in the top Gmail navigation bar.

  2. Select Account from the menu that comes up.

  3. If you do not see your name or photo,

    • Click the Settings gear in Gmail
    • Select Settings
    • go to the Accounts and Import tab and
    • Click Other Google Account settings.
  4. Go to the Security category.

  5. Click Setup (or Edit) under 2-Step Verification in the Password section.

  6. If prompted, enter your Gmail password under Password: and click Sign in.

  7. Click Start setup under 2-step verification.

  8. If you use an Android, BlackBerry or iOS device:

    • Select your phone under Set up your phone.
    • Install the Google Authenticator app on your phone.
    • Open the Google Authenticator app.
    • Select + in the application.
    • Select Scan Barcode.
    • Click Next in your browser.
    • Focus the QR code on the web page with the phone's camera.
    • Click Next in your browser again.
    • Enter the code that appeared in the Google Authenticator app for the email address you just added under Code.
    • Click Verify.
  9. If you use any other phone:

    • Select Text message (SMS) or voice call under Set up your phone.
    • Enter your phone number under "Add a mobile or landline phone number where Google can send codes".
    • Choose SMS text message if your phone can receive SMS messages or Automated voice message to have authentication codes read to you.
    • Click Send code.
    • Type the numerical Google verification code you received under Code.
    • Click Verify.
  10. Click Next again.

  11. Click Next once more.

  12. Now click Print codes to print offline verification codes that you can use to log in to your Gmail account when your phone is misplaced; keep the codes separately from the phone.

  13. Make sure Yes, I have a copy of my backup verification codes is checked after you have written down or printed the offline verification codes.

  14. Click Next.

  15. Enter a backup phone number — a landline, for example, or a family member or friend's phone — under "You can have codes sent to your backup phone number if your primary phone is unavailable, lost, or stolen".

  16. Pick SMS text message if the phone can receive SMS messages or Automated voice message.

  17. If your backup phone and friend are handy, use ​(Optional) Test the phone to send an authentication code to it.

  18. Click Next.

  19. If you have add-ons and applications access your Gmail account, click Next.

  20. Now click Turn on 2-step verification.

  21. Click OK under "You are turning on 2-step verification for this account".

  22. Enter your Gmail address under Email.

  23. Type your Gmail password under Password.

  24. Click Sign in.

  25. Enter the verification code received under Enter code:.

  26. Optionally, select Remember verification for this computer for 30 days, which will not have Gmail request new phone verification for a month.

  27. Click Verify.

  28. If add-ons and applications have access to your Gmail account, you may have to set up specific passwords for them, click Create passwords.

  29. Set up passwords for applications that do not work with enhanced 2-step verification (such as email programs that access your Gmail account using POP or IMAP). You can always add new application-specific passwords later and revoke them as you desire.

Disable Two-Step Verification for Your Gmail Account

To turn off enhanced two-step verification for Gmail:

  1. Go to the Google 2-step verification page.

  2. If prompted, enter your Gmail password under Password: and click Sign in.

  3. Click Turn off 2-step verification.

  4. Now click OK.