EsusuOnline — 2FA Setup Guide

What is Two-Factor Authentication?

2FA adds a second verification step at login. Even if someone knows your password, they cannot access your account without also passing the second check. EsusuOnline supports four 2FA methods — choose the one that suits you best.

🔑

Authenticator App

Google Authenticator, Authy, Microsoft Authenticator — works offline

Recommended

📱

SMS

One-time code sent to your registered mobile number

📧

Email OTP

Six-digit code sent to your account email address

🔐

Security Key

Hardware key, Touch ID, Face ID, or Windows Hello (WebAuthn)

A Setting Up an Authenticator App (Recommended)

Navigate to Security & 2FA

Click your profile avatar (top-right) and select Security & 2FA, or open the sidebar and choose Settings → Security & 2FA. The URL will be esusuonline.org/security/2fa.

esusuonline.org/security/2fa

Settings › Security & 2FA

🛡️ Two-Factor Authentication

Secure your account with an additional layer of protection

OFF

⚠️ 2FA is not enabled. Your account is protected by password only.

Choose the "Authenticator" tab and click Set Up

The page has four tabs — one per method. Select Authenticator (active by default), then click "Set Up Authenticator".

esusuonline.org/security/2fa

🔑 Authenticator

📱 SMS

📧 Email

🔐 Security Key

Authenticator App

Use an app like Google Authenticator or Authy to generate time-based codes. Works offline.

Scan the QR code with your authenticator app

A dialog appears with a QR code. Open your authenticator app, tap "+" or "Add account", choose Scan QR code, and point the camera at the code.

If you can't scan, tap "Can't scan? Enter key manually" and type the secret key shown below the QR code.

Set Up Authenticator — Step 1 of 2

Scan this QR code

Open your authenticator app and scan:

Can't scan?

            JBSWY3DPEHPK3PXP
            
          

Enter the 6-digit code from your app

After adding the account in your app, a 6-digit rotating code appears (refreshes every 30 seconds). Type it into the verification field and click "Verify & Activate".

Set Up Authenticator — Step 2 of 2

Enter verification code

Enter the 6-digit code shown in your authenticator app

Save your backup codes

After successful verification, 10 single-use backup codes are displayed. Save them somewhere safe (password manager, printed paper) — you'll need one if you ever lose access to your authenticator app.

⚠️ Important: Each backup code can only be used once. Store them securely now — they will not be shown again.

Backup Codes

🔒 Your Backup Codes

Store these in a safe place. Each code can only be used once.

7f3k-9xp2 ⧉

4m8n-2qrt ⧉

b5wz-6hlj ⧉

c1vy-0das ⧉

p9ux-3efi ⧉

r2gk-7mnb ⧉

s6ot-4cwq ⧉

v0hl-8zpy ⧉

x3ja-5dek ⧉

y8rb-1nuf ⧉

Confirm 2FA is active

The Security page now shows your 2FA status as ON with your enabled method listed.

esusuonline.org/security/2fa

✅ 2FA is enabled. Your account has an extra layer of security.

🔑

Authenticator App

Last used: just now

Active

B Setting Up SMS 2FA

Open the SMS tab and enter your phone number

Click the SMS tab, enter your mobile number in international format (e.g. +2348012345678), and click "Send Code".

esusuonline.org/security/2fa

🔑 Authenticator

📱 SMS

📧 Email

🔐 Security Key

Mobile number

+2348012345678

Enter the SMS code

Check your phone for a 6-digit code. Enter it in the verification field (code expires in 5 minutes) and click "Verify".

SMS Verification

Code sent to +234 801 *** 5678 · expires in 4:32

C Setting Up Email 2FA

Click "Send Code" on the Email tab

EsusuOnline sends a 6-digit code to your registered email. The code expires in 5 minutes.

esusuonline.org/security/2fa

🔑 Authenticator

📱 SMS

📧 Email

🔐 Security Key

A verification code will be sent to your registered email address.

✅ Code sent! Check your inbox and spam folder.

Enter the code from your email

Copy the 6-digit code from the email and paste or type it in, then click "Verify".

Email Verification

Enter the 6-digit code from your email · expires in 4:51

Enter your email and password as usual

The login screen looks identical to before. Submit your credentials normally.

You are prompted for your 2FA code

After a correct password, EsusuOnline asks for your second factor. Open your authenticator app (or check your SMS/email) for the current code.

esusuonline.org/login

🔐

Two-Factor Verification

Enter the 6-digit code from your authenticator app

Lost access? Use a backup code

🔒 Security Tips

Use an authenticator app over SMS/email when possible — it works offline and is phishing-resistant.
Save your backup codes immediately after setup. Store them in a password manager or a printed, locked location.
Never share your 2FA code with anyone, including EsusuOnline support staff.
Enable multiple methods — e.g. Authenticator + Email — so you always have a fallback.
Lost your phone? Use a backup code to log in, then set up 2FA again on your new device.
Codes expire — TOTP codes refresh every 30 seconds; SMS/Email codes expire in 5 minutes.

→ Open 2FA Settings → Account Settings → Full User Guide