Audience: users
Times: estimated read/watch
- [30sec] What is 2FA? (reference video)
- [1.5min] Mobile app: Which one should be used? (Maintained by Privacy Guides community)
- Desktop app (not a good practice, only if you do not have a professional mobile phone)
- [17min] How to set-up TOTP? (Video, minute 10:49 to 28:10). Full video covers all about TOTP.
- How to backup codes? Answer: In your local password manager (Maintained by Privacy Guides community).
- WARNING: Ensure you also backup your password manager (ex: external drive that rest in your home or in the office) because if you lost both your phone and laptop you will lost access for all services using 2FA.
Frequent Asked Questions (FAQ)
Estimated times to get proper 2FA setup
5 minutes if you already have good security habits otherwise:
- [30 to 45 minutes] If you are not familiar with 2FA/TOTP to carrefully read/watch most links in the items above.
- [15 to 30 minutes] If you do not have a proper phassphrase for your password manager.
- [15 to 30 minutes] If you do not have a password manager in the list and you will use the GUI one.
- [30 to 45 minutes] If you do not have a password manager in the list and you will use the CLI one.
- [1 to 2 hours] If you will setup a password manager with GPG and you do not know GPG.
- [5 minutes] To install the mobile or desktop 2FA app.
- [5 minutes] To setup a 2FA code for one account (ex: GitLab).
- [5 to 10 minutes] 2FA codes backup
- [1 to 2 hours] If you do not have a external backp (ex: external disk using rsync) setup for your password manager + your private keys (YubyKey, GPG, File Key).