Setting up two-factor authentication (2FA) on your account
Enable TOTP-based 2FA in under two minutes using any authenticator app — Google Authenticator, Authy, or 1Password.
Two-factor authentication (2FA) adds a second check to your login. Even if someone gets your password, they cannot access your account without the rotating code from your authenticator app. VeloCMS uses the TOTP standard, which works with every major authenticator app.
Before you start
Install an authenticator app on your phone if you don't already have one. Google Authenticator, Authy, and 1Password all work. Any TOTP-compatible app works. You only need to set this up once.
Enable 2FA
Go to Admin → Account → Security. Click 'Enable two-factor authentication'. VeloCMS generates a QR code. Open your authenticator app, tap 'Add account' (or the plus icon), and scan the QR code. The app will start showing a six-digit code that rotates every 30 seconds.
Confirm and save backup codes
Enter the current six-digit code from your authenticator app into the confirmation field on screen. Click 'Confirm'. VeloCMS then shows you ten single-use backup codes. Copy them somewhere safe — a password manager is ideal. These codes let you get back in if you lose your phone. Each backup code can only be used once.
If you lose your phone and have no backup codes, you cannot recover your account without contacting support. Store backup codes offline before leaving this screen.
What happens at login
After enabling 2FA, login requires two steps: first your email and password, then a code from your authenticator app. The code field accepts both live TOTP codes and your backup codes. There is no 'remember this device' option currently — every login requires the code.
Disabling 2FA
Go back to Admin → Account → Security and click 'Disable two-factor authentication'. Enter your current authenticator code to confirm. 2FA is removed immediately. You can re-enable it at any time.