Xendit provides 2-Factor Authentication to keep an extra layer of security on your account to prevent unauthorized login. You can register an authenticator app on your Android or iOS devices to enable 2-factor Authentication mechanism in your Xendit Dashboard.

2FA helps protect your account by requiring two forms of authentication:

• Something you know: Your Xendit account password.
• Something you have: A unique, time-sensitive code generated by an authenticator app on your mobile device.

Xendit currently supports 2FA via authenticator apps that utilize the Time-based One-Time Password (TOTP) algorithm. Popular authenticator apps include:

• Google Authenticator
• Authy
• Microsoft Authenticator

Steps to set up:

1. Download an authenticator app (Google Authenticator, Authy, or Microsoft Authenticator)
   • If you are using iOS, you can search "authenticator" on Apps Store.
   • If you are using Android, you can search "authenticator" on Google Play Store
2. Select the authenticator app based on your preference and follow the complete steps until the app is fully downloaded and accessible on your end.
3. Log in to your Xendit account
4. Go to Settings -> Your Profile -> 2-factor Authentication -> Setup 2FA
5. Scan the QR code that is appeared with your authenticator app and click Next
6. Enter the 6-digit code from your authenticator app
7. The “Enable” button will be activated and on you will receive the backup codes.
8. Keep the backup codes somewhere safe and make sure you remember where you save them. You will need them if you lose your device. Each code can only be used once.