tutorial

How to Set Up 2FA on Discord

4 min read

Why bother with 2FA on Discord?

Discord accounts get targeted more often than you’d think. Compromised accounts are used to send phishing links to everyone on a server, and if you’re a server admin, an attacker with your login can do real damage: deleting channels, banning members, or turning the whole place into a spam farm.

Enabling two-factor authentication means that even if someone gets your password, they still can’t log in without a code from your phone. It takes about two minutes to set up, and it’s one of those things where you’ll be glad you did it before you needed it.

If you’re not familiar with how authenticator codes work, What is TOTP? covers the mechanics.

What you’ll need

  • A Discord account (desktop or mobile)
  • An authenticator app on your phone (Google Authenticator, Authy, 1Password, or anything that supports TOTP)

Step-by-step setup

1. Open your user settings

On desktop, click the gear icon next to your username at the bottom left. On mobile, tap your avatar in the bottom right, then tap the gear icon.

2. Go to “My Account”

In the settings menu, you should already be on the “My Account” page. If not, click it in the left sidebar.

3. Click “Enable Two-Factor Auth”

Scroll down a bit and you’ll see a button labeled “Enable Two-Factor Auth.” Click it.

Discord will ask you to enter your current password first. Type it in and continue.

4. Scan the QR code

Discord shows you a QR code. Open your authenticator app, add a new account, and scan the code with your camera.

If you can’t scan the QR code (maybe you’re setting this up on the same phone), click the link that says “enter the code manually” or similar. Discord will show you a text-based secret key. Type that into your authenticator app instead.

5. Enter the 6-digit code

Your authenticator app will start generating 6-digit codes that change every 30 seconds. Type the current code into Discord and click “Activate.”

That’s it. 2FA is now on.

Download your backup codes

Right after enabling 2FA, Discord will show you a set of backup codes. This part is easy to skip past, but don’t.

These codes are your way back into your account if you lose access to your authenticator app. Each code works once. If your phone breaks, gets lost, or you switch to a new device without transferring your authenticator, these codes are your only option besides contacting Discord support (which is slow and not guaranteed to work).

Save them somewhere safe. A few options:

  • Print them and keep the paper somewhere secure
  • Save them in a password manager
  • Write them down and store them separately from your devices

You can also view or regenerate your backup codes later by going back to User Settings > My Account and clicking “View Backup Codes.”

If you’re a server owner

Discord has an extra setting for server-level 2FA. If you moderate a server, you can require all moderators and admins to have 2FA enabled before they can take administrative actions like deleting channels or banning members.

To turn this on, go to Server Settings > Safety Setup and enable the “Require 2FA for moderator actions” option. This won’t force anyone to set up 2FA, but they won’t be able to use their mod powers until they do.

Logging in with 2FA

Once 2FA is active, Discord will ask for a code from your authenticator app every time you log in on a new device or session. Open your app, find the Discord entry, and type the current 6-digit code.

If you don’t have your authenticator handy, you can use one of your backup codes instead. Just click “Use a backup code” on the login screen.

What if something goes wrong

Lost your phone and your backup codes? You’ll need to contact Discord support. They’ll ask you to verify your identity, and it can take days or longer. That’s the main reason to keep those backup codes somewhere accessible.

If you’re switching phones, most authenticator apps have an export or transfer feature. Do that before wiping your old device.

Quick recap

  1. User Settings > My Account > Enable Two-Factor Auth
  2. Enter your password
  3. Scan the QR code with your authenticator app
  4. Type the 6-digit code to confirm
  5. Save your backup codes somewhere safe

The whole process takes a couple of minutes, and your account is meaningfully harder to break into afterward.

Want to test how authenticator codes work before committing? You can try generating TOTP codes at 2fa.zip — it runs entirely in your browser with nothing sent to a server.

Secure your accounts with two-factor authentication

Generate TOTP codes instantly, right in your browser.

Try our free 2FA Code Generator

Related Posts

Setting Up 2FA for Crypto Exchanges (Binance, Coinbase)

How to enable two-factor authentication on Binance and Coinbase to protect your cryptocurrency accounts from unauthorized access.

Read more

How to Enable 2FA on GitHub with an Authenticator

Protect your GitHub account with two-factor authentication. A step-by-step guide to setting up TOTP-based 2FA.

Read more

How to Set Up 2FA on Your Google Account

Enable two-factor authentication on your Google account using an authenticator app for better security than SMS codes.

Read more