Two-factor authentication (also called 2FA) adds a second layer of protection to your account: in addition to the password, we ask for a 6-digit code generated by an authenticator app installed on your phone. That code changes every 30 seconds and can only be generated by someone who physically has your device.
If someone manages to steal your password, they cannot get into your account without that code. That is why we recommend enabling 2FA on every account, especially Owners and Admins.
Authenticator apps: which one to pick
Any app that implements the TOTP (Time-based One-Time Password) standard works with Modari. Most are free and all work offline —they do not need internet to generate the code. Some options:
- Google Authenticator: the most well-known. Simple, free, no account required. If you change phones, you must migrate manually.
- Microsoft Authenticator: similar to Google Authenticator, with optional cloud backup if you have a Microsoft account.
- Authy: offers encrypted cloud backup and synchronization between devices, useful if you lose your phone.
- 1Password or Bitwarden: password managers that can also generate TOTP codes. Useful if you already use one of them for your passwords.
The process step by step
Open the security settings
Log in to Modari and go to Settings → Security in the side menu. You will see two sections: Change password and Two-factor authentication.
Tap 'Enable two-factor authentication'
In the 2FA section, tap the button to enable it. The system generates a unique secret key for your account and shows you a QR code.
Scan the QR code with your app
Open your authenticator app and choose the option "Add account" or "Scan QR code" (the exact name varies by app). Point your phone's camera at the QR shown on the Modari screen.
If for some reason you cannot scan the QR (for example, you are using the authenticator app on the same device where you have Modari open), tap "I cannot scan the code". A manual setup key will appear that you can copy and paste into your app.
Enter the 6-digit code
Once the account is added, your app will start generating 6-digit codes that change every 30 seconds. Type the current code in the Modari field and tap "Verify and activate".
If the code fails, wait for it to change and try the next one. You have 5 attempts in 15 minutes before the system temporarily blocks you for security.
Save your recovery codes
Modari shows you 8 recovery codes in
XXXX-XXXXformat. These codes let you log in if you lose access to your authenticator app (for example, if your phone is stolen or lost).Print them or store them in a safe place—not on the same phone where you have the authenticator app. When you have them stored, check the "I saved my codes" box and tap "Continue".
Done
2FA is now active. The next time you log in, after entering your email and password we will ask for the 6-digit code generated by your app.
What a login with 2FA looks like
- Enter your email and password as always.
- Modari takes you to a screen asking for the 6-digit code.
- Open your authenticator app. You will see the Modari code, which changes every 30 seconds.
- Type the code and tap "Verify".
- Optionally, check "Trust this device for 30 days". If you check it, we will not ask for the code again from this device for 30 days (more details in the Trusted devices article).
Disable 2FA
If for some reason you need to disable 2FA (for example, you are going to switch authenticator apps), you can do it from the same Settings → Security screen. For security, we will ask for:
- Your current password.
- A valid code from your authenticator app.
When you disable it, the recovery codes become invalid and the secret key is removed from the system. If later you decide to enable 2FA again, we generate a new key and new recovery codes.
What's next
Next you should know how the recovery codes work: what to do if you lose them and how to use them when you lose access to your authenticator app.