Enable two-factor authentication (2FA)
Before you start
Who can use this feature
Use two-factor authentication on any Figma team or plan
You can't configure two-factor authentication in Figma if you login via Google SSO or SAML SSO
Enable two-factor authentication (2FA) to add an extra layer of security to your Figma account. When 2FA is enabled, you need to confirm your identity each time you log in to your Figma account.
You can authenticate your Figma account using any of the following methods:
- SMS
- Google Authenticator
- Duo Mobile
- Authy
- 2FA (Windows phone)
You need to choose your authentication method as part of the setup process. We recommend installing any authentication apps before you start.
Two-factor authentication must be set up on each Figma account individually. There isn't currently a way to enable or enforce two-factor authentication across a team or organization.
Note: If you login to Figma via Google SSO or SAML SSO, you won't be able to enable two-factor in Figma. You will need to enable two-factor or multi-factor authentication with your identity provider instead.
Set up two-factor
Enable two-factor authentication in your Figma account settings. To view and update your account settings:
- From the file browser, click your name in the top-left corner.
- Select Settings from the account menu.
- From the Account tab, scroll to the Password section and click Enable two-factor authentication.
-
A
SMS
- Click Enable two-factor authentication.
- Enter your password to confirm your identity and click Continue.
- Select Send me an SMS instead option.
- Enter your phone number and click Verify. Figma will send you an SMS with a seven-digit code.
- Enter the code you received in Figma and click Verify.
- Click Continue to recovery codes to receive your recovery code(s).
- Figma will display a list of recovery codes on screen. We recommend saving a copy of these somewhere safe. For example: in a password manager or encrypted file storage.
Note: When you set up two-factor with SMS, you can also add an authenticator app. When both are enabled, Figma will prompt you to authenticate via the app first. Click Send me an SMS to authenticate via SMS instead.
-
B
Authenticator app
You need to choose your authentication method at the beginning of the set up process. We recommend setting your authenticator up on your device(s) before you enable two-factor in Figma:
- Get verification codes with Google Authenticator (external link)
- Authenticating with the Duo Prompt (external link)
- Downloading and Installing Authy Apps
- Get Microsoft Authenticator (external link)
- Click the Enable two-factor authentication setting.
- Enter your password to confirm your identity and click Continue.
- Figma will display some links to download and install your desired authenticator. Once you have your authenticator installed or set up, click Continue.
- Figma will display a unique barcode on screen. Use your authenticator app to scan the barcode.
- Your authenticator app will generate a six digit code. Enter the code in the field provided and click Verify.
- Click Continue to recovery codes to receive your recovery code(s).
- Figma will display a list of recovery codes on screen. We recommend saving a copy of these somewhere safe. For example: in a password manager or in encrypted file storage.
Note: Disable two-factor authentication by visiting this page and clicking the Disable link. You will need to confirm your password before you can disable two-factor authentication.
Remove two-factor authentication
Remove or reconfigure your two-factor authentication settings at any time. Manage two-factor authentication in your Figma account settings:
- From the file browser, click your name in the top-left corner.
- Select Settings from the account menu.
- From the Account tab, scroll to the Password section.
-
A
SMS
- Next to the Configured cell phone number click Configure.
- Enter your password to confirm your identity and click Continue.
-
B
Authenticator app
- Next to Authenticator apps are enabled click Disable.
- Enter your password to confirm your identity and click Continue.
- Click Ok to confirm and remove two-factor authentication.
- Click Use an authenticator app instead.