> For the complete documentation index, see [llms.txt](https://unicornx-ai.gitbook.io/unicornx.ai/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://unicornx-ai.gitbook.io/unicornx.ai/app-beginners-tutorial/2fa.md).
# Two-Factor Authentication (2FA) Setup
Two-Factor Authentication (2FA) provides an additional security layer on top of email verification. UnicornX enables email verification by default for all users, and we recommend adding Google Authenticator for enhanced account protection.
Google Authenticator is a professional authentication app that generates 6-digit dynamic verification codes on your mobile device, refreshing every 30 seconds. Even if attackers obtain your email verification code, they cannot access your account without your mobile device, creating a solid security barrier for your digital assets.
{% hint style="success" %}
🛡️ **Essential Account Security:**
* Two-Factor Authentication (2FA) provides additional protection for your assets
* Supports Google Authenticator app, generates codes even offline
* Simple 3-step binding process with complete visual guidance
{% endhint %}
## 📱 Access Points
### 🔧 Settings Page Access
Click your profile avatar in the app to enter **Profile → Account Security → Google Authenticator**
**Account Security page displays:**
* **Two-Factor Authentication (2FA)**
* To secure your account, please enable at least two forms of two-factor authentication
* ✅ Email (completed by default)
* ❗ Google Authenticator (shows exclamation mark when incomplete, checkmark when complete)
***
## 🔗 Initial Binding Process
### Step 1: Install Google Authenticator
**Download Google Authenticator App**
1. Open your phone's app store
2. Search for "Google Authenticator"
3. Download and install, then click "Next"
{% tabs %}
{% tab title="🍎 iOS Users" %}
**App Store Search:**
* Google Authenticator
* Developer: Google LLC
{% endtab %}
{% tab title="🤖 Android Users" %}
**Google Play Search:**
* Google Authenticator
* Developer: Google LLC
{% endtab %}
{% endtabs %}
### Step 2: Scan and Bind Authenticator
1. **Get Secret Key**
* Page displays QR code and secret key string
* Click "Copy" button to copy the key with one click
* Success message "Copied" appears when completed
2. **Add to Google Authenticator**
* Open Google Authenticator app and select "Add Dynamic Code"
* Select "Manual Entry"
* Enter "Account Name", "Your Key", and "Type of Key" (Time based) to complete addition
3. **Enter Verification Code**
* Get 6-digit verification code from Google Authenticator
* Enter the code in UnicornX
* Input field turns red when code is incorrect, showing "Incorrect code"
{% hint style="warning" %}
⚠️ **Important Reminder:**
* Please save your secret key securely. It will help you reset Google Authenticator if your phone is lost
* Google verification codes refresh every 30 seconds, please enter promptly
{% endhint %}
### Step 3: Complete Security Verification
**Two-Factor Verification Confirmation:**
1. **Email Verification**
* System automatically sends verification code to your registered email
* Enter the received 6-digit email verification code
* Click "Resend" to get a new verification code
2. **Google Verification Code**
* Enter the 6-digit verification code from Google Authenticator
* Ensure the code has not expired (30-second validity)
3. **Click "Confirm" to Complete Binding**
**Didn't receive verification code?**
* **Email verification code:** Check spam folder or wait for email delay
* **Google verification code:** Confirm correct entry and not expired
* If issues persist, contact support for reset assistance
4. **Binding Successful:**
* Return to Account Security page
* Display "Google Authenticator Bound" message
* Google verification status shows ✅
***
## 🔄 Replace Google Authenticator
### Trigger 24-Hour Security Protection
{% hint style="warning" %}
⚠️ **24-Hour Cooldown**
* Withdrawals and private key exports are restricted for 24 hours after security changes
* Estimated availability time will be displayed on the page
{% endhint %}
### Replacement Process
1. **Enter Replacement Page**
* Settings → Account Security → Google Authenticator → Change Google Authenticator
* Confirm 24-hour restriction popup
2. **Set Up New Authenticator**
* Get new QR code and secret key
* Add new UnicornX account in Google Authenticator
* **Important: Temporarily keep the old authenticator account**
3. **Security Verification Confirmation**
* Enter email verification code
* Enter current Google Authenticator verification code
* Complete replacement verification
4. **Replacement Successful:**
* Display "Google Authenticator Replaced" message
* You can now delete the old authenticator account
***
## 🔐 Security Verification Use Cases
### Automatically Triggered Verification Scenarios
**Mandatory Verification Scenarios:**
* New device login
* Login without verification for over 30 days
* Location change (new IP region detected)
**Pre-Operation Verification:**
* Withdrawal/transfer operations
* Private key export operations
### Verification Process
1. **System Verification Prompt**
* "Please Complete Security Verification"
* "To ensure account asset security, please complete account security verification now"
* Click "Start Verification"
2. **Complete Two-Factor Verification**
* Enter email verification code
* Enter Google verification code
* Click "Confirm"
3. **Verification Complete**
* Display "Account security verification complete"
* Return to previous operation page
{% hint style="info" %}
💡 **Verification Rules:**
* After closing verification popup, system will remind again after 3 minutes
* Withdrawals and private key exports require verification completion to proceed
* Security verification popups have highest priority
{% endhint %}
***
## ❓ Frequently Asked Questions
### Q1: What if I lose my phone?
**A1:** If you saved your secret key, you can re-add it on a new phone. If you didn't save the key, please contact support for reset assistance.
### Q2: Google verification code keeps showing error?
**A2:** Please check:
* Is your phone time accurate
* Has the verification code expired (30-second refresh)
* Did you select the correct UnicornX account
### Q3: Need urgent withdrawal during 24-hour restriction?
**A3:** For account security, the 24-hour restriction cannot be lifted early. Please wait patiently for the restriction period to end.
### Q4: Can I skip Google Authenticator and use only email?
**A4:** We recommend enabling Google Authenticator for better security protection. Some high-risk operations may require two-factor verification.
{% hint style="success" %}
🎉 **Benefits After Completing Binding:**
* Account security level significantly improved
* Asset protection even if email is compromised
* Withdrawals and critical operations require dual confirmation
* Access to complete UnicornX service experience
{% endhint %}
---
# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.
## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.
Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter:
```
GET https://unicornx-ai.gitbook.io/unicornx.ai/app-beginners-tutorial/2fa.md?ask=&goal=
```
`ask` is the immediate question: it should be specific, self-contained, and written in natural language.
`goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.
Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.