What is two-factor authentication?
Two-factor authentication is an extra layer of security that helps to protect your Envato account. When you have two-factor authentication on your account you will be asked to enter an authentication code in addition to your username and password when logging in.
How does it work?
Each time you log into your Envato account you will need to enter your username and password plus an authentication code. You will need to access your authentication code from a mobile app like Authy or Google Authenticator. These apps generate time-based codes that are only valid for a small period of time.
What if I lose my device?
If you lose your device you can use your backup codes to log in. Once you gain access to your account you can disable your two-factor authentication from account.envato.com and set it up on a new device.
If you don’t have access to your backup codes, and cannot access your account please contact our support team here.
What are backup codes?
Backup codes are one-time use codes that will enable you to gain access to your account when you don’t have access to your mobile device. Your backup codes are automatically generated when you first set up two-factor authentication. You should treat backup codes like passwords and store them securely in a password manager or something similar. You can generate new backup codes at any time from account.envato.com, by clicking on ‘Two Factor Authentication’ and ‘View backup codes’.
Can I turn two-factor authentication off if I change my mind?
Yes, you can manage your two-factor authentication from account.envato.com by clicking on ‘Two Factor Authentication’ and disable (or enable) at any time. You can follow the steps outlined here.
What if my two-factor authentication codes won't allow me to log in?
If the time displayed on your mobile device is incorrect for the timezone your device is set to, then your authenticator app codes may not work when you try to login. You can use this link to check if your mobile time is correct.
To synchronise the time and timezone on your device, go to the ‘Date and Time’ settings on your mobile device and reset (turn off and then on again) the automatic time setting. This should ensure the time on your mobile device is correct and allow you to log in with the authenticator app codes.
Android users: https://www.androidcentral.com/why-wont-my-phone-keep-right-time
iPhone users: https://osxdaily.com/iphone-ipad-wrong-time-fix/
Signing in with Google
Make sure your Google Authenticator app's time is synced correctly. Launch the app, tap the Menu button (three dots), and go to Settings > Time Correction for Codes > Sync now.
You should find that your Authenticator codes work properly after this. Syncing the time in the Google Authenticator app won't affect the time setting on your phone.