Sign InGet Started

Two Factor Authentication

Two-Factor Authentication (2FA)

What is Two-Factor Authentication?

Two-Factor Authentication (2FA) adds an extra layer of security to your Contextium account. Even if someone knows your password, they won't be able to access your account without the second factor - a time-based code from your authenticator app.

Benefits

  • 🔒 Enhanced Security: Protects against password theft and phishing attacks
  • 📱 Easy to Use: Works with popular authenticator apps you may already use
  • 🔑 Backup Codes: Get emergency access codes in case you lose your phone
  • Fast: Takes just 6 digits to verify your identity

Compatible Authenticator Apps

2FA works with any TOTP-compatible authenticator app, including:

  • Google Authenticator (iOS & Android)
  • Authy (iOS, Android & Desktop)
  • 1Password (with built-in authenticator)
  • Microsoft Authenticator (iOS & Android)
  • Bitwarden (with authenticator feature)

Setting Up 2FA

Step 1: Access Security Settings

  1. Log in to your Contextium account
  2. Click your profile picture in the top right
  3. Select Settings
  4. Navigate to the Account tab
  5. Scroll to Two-Factor Authentication

Step 2: Enable 2FA

  1. Click the Enable Two-Factor Authentication button
  2. A dialog will appear with a QR code

Step 3: Scan the QR Code

Using Your Authenticator App:

  1. Open your authenticator app (e.g., Google Authenticator)
  2. Tap the + or Add button
  3. Select Scan QR Code
  4. Point your camera at the QR code on your screen
  5. The app will automatically add Contextium to your accounts

Manual Entry (if QR code doesn't work):

  1. In your authenticator app, select Enter a setup key or Manual entry
  2. Copy the key shown below the QR code in Contextium
  3. Paste it into your authenticator app
  4. Set the account name to "Contextium" and your email

Step 4: Verify Setup

  1. Your authenticator app will now show a 6-digit code for Contextium
  2. Enter this code in the verification field
  3. Click Verify & Enable

Note: The code refreshes every 30 seconds, so you'll need to enter it quickly.

Step 5: Save Your Backup Codes

After successful verification, you'll see 10 backup codes. These are critical for account recovery.

⚠️ Important: Save These Codes Immediately

Each backup code can only be used once. Save them in a secure location:

  • Password manager (recommended)
  • Encrypted file
  • Secure note app
  • Printed and stored safely

Do not:

  • ❌ Save in an unencrypted text file
  • ❌ Share with anyone
  • ❌ Store only on your phone (you might need them if your phone is lost)

Download or Copy

  • Click Download to save as a text file
  • Click Copy to copy all codes to clipboard

Logging In with 2FA

Once 2FA is enabled, your login process changes slightly:

Login Steps:

  1. Go to app.contextium.io
  2. Enter your email and password
  3. Click Sign In
  4. You'll be redirected to the 2FA verification page
  5. Open your authenticator app
  6. Find your Contextium entry
  7. Enter the 6-digit code shown
  8. You'll be logged in automatically

Tip: The code refreshes every 30 seconds. If it's about to expire (the progress circle is almost complete), wait for the next code to avoid timing issues.

Using Backup Codes

When to Use Backup Codes

Use a backup code if:

  • You lost your phone
  • Your authenticator app was uninstalled
  • Your phone is broken or out of battery
  • You're setting up a new phone

How to Use a Backup Code:

  1. On the 2FA verification page, click Use backup code instead
  2. Enter one of your saved backup codes
  3. Click Verify
  4. You'll be logged in

Important: Each backup code can only be used once. After using a code, cross it off your list.

Running Low on Backup Codes?

When you have fewer than 3 backup codes remaining, you'll see a warning in your settings. Generate new codes:

  1. Go to SettingsAccountTwo-Factor Authentication
  2. Click Regenerate Backup Codes
  3. Enter your password to confirm
  4. Save the new codes (old codes will be invalidated)

Disabling 2FA

If you need to disable 2FA:

  1. Log in to Contextium
  2. Go to SettingsAccountTwo-Factor Authentication
  3. Click Disable Two-Factor Authentication
  4. Enter your password to confirm
  5. 2FA will be disabled immediately

Security Note: You'll receive an email notification when 2FA is disabled. If you didn't disable it, someone else may have accessed your account. Change your password immediately and contact support.

Troubleshooting

"Invalid verification code" Error

Possible causes:

  1. Time sync issue (most common)

    • Solution: Ensure your phone's time is set to automatic
    • Go to Settings → Date & Time → Set Automatically

  2. Code expired

    • Solution: Wait for the next code (refreshes every 30 seconds)

  3. Wrong account

    • Solution: Make sure you're looking at the Contextium entry in your authenticator app

  4. Multiple attempts failed

    • Solution: You may be rate-limited (5 attempts per 15 minutes). Wait 15 minutes and try again.

Lost Access to Authenticator App

If you have backup codes:

  1. Use a backup code to log in
  2. Go to Settings and disable 2FA
  3. Re-enable 2FA with your new phone/app

If you don't have backup codes:

  1. Contact Contextium support at support@contextium.io
  2. Provide proof of account ownership
  3. Support will help you regain access

Prevention: Always save your backup codes when enabling 2FA!

Setting Up New Phone

Before wiping your old phone:

Option 1: Transfer authenticator data (easiest)

  • Most authenticator apps have export/transfer features
  • Follow your authenticator app's instructions for transferring accounts

Option 2: Re-setup 2FA

  1. Log in to Contextium on your computer
  2. Disable 2FA (requires password)
  3. Set up a new phone
  4. Re-enable 2FA and scan the QR code with your new phone

QR Code Won't Scan

Try these solutions:

  1. Increase brightness on your screen
  2. Adjust distance between phone and screen
  3. Use manual entry instead:
    • Copy the key shown below the QR code
    • Enter it manually in your authenticator app

Code Always Says "Invalid"

Check time synchronization:

iPhone:

  1. Go to SettingsGeneralDate & Time
  2. Enable Set Automatically

Android:

  1. Go to SettingsSystemDate & time
  2. Enable Automatic date & time
  3. Enable Automatic time zone

Google Authenticator specific:

  1. Open Google Authenticator
  2. Tap the three dots (⋮) menu
  3. Go to SettingsTime correction for codes
  4. Tap Sync now

Best Practices

✅ Do's

  • Save backup codes in a secure location immediately
  • Keep your phone's time set to automatic
  • Test a backup code before relying on them (use one to log in)
  • Regenerate backup codes when running low (< 3 remaining)
  • Enable 2FA on all your important accounts, not just Contextium

❌ Don'ts

  • Don't share your backup codes with anyone
  • Don't take screenshots of QR codes and store them insecurely
  • Don't lose your backup codes - you might need them!
  • Don't disable 2FA unless necessary - it significantly improves security

Security Tips

If You Suspect Unauthorized Access

  1. Change your password immediately
  2. Check your security settings
  3. Review recent activity in your account
  4. Enable 2FA if it's not already enabled
  5. Contact support if you notice suspicious activity

Email Notifications

You'll receive email notifications when:

  • 2FA is enabled on your account
  • 2FA is disabled on your account
  • Backup codes are regenerated

If you receive these emails unexpectedly, your account may be compromised. Change your password immediately.

Frequently Asked Questions

Can I use the same authenticator app for multiple services?

Yes! Most authenticator apps can store codes for multiple services. Each service will have its own entry with its own code.

What happens if I lose my phone?

Use a backup code to log in, then:

  1. Disable 2FA from settings
  2. Get your new phone set up
  3. Re-enable 2FA with the new phone

This is why backup codes are so important!

Can I use SMS-based 2FA instead?

Contextium uses TOTP (Time-based One-Time Password) 2FA, which is more secure than SMS. SMS-based 2FA is vulnerable to SIM swapping attacks. TOTP-based 2FA (with an authenticator app) is the industry standard for security.

Do I need to enter a code every time I log in?

Yes, every time you log in on a new device or after your session expires. This ensures that even if someone steals your password, they can't access your account without your phone.

Can I have 2FA on multiple devices?

Yes! When you scan the QR code during setup, you can scan it with multiple devices (like both your phone and tablet). All devices will show the same codes.

How long do the codes last?

Each code is valid for 30 seconds. A new code is generated every 30 seconds.

What if I'm traveling to a different time zone?

TOTP codes are based on time, but they'll still work as long as your phone's time is set to automatic. The system accounts for reasonable time differences.

Need Help?

If you're experiencing issues with 2FA that aren't covered here:

Account locked? If you've lost access and don't have backup codes, contact support with:

  • Your registered email address
  • Proof of account ownership (previous login locations, payment information, etc.)
  • Detailed description of the issue

We'll help you regain access to your account securely.

Last Updated: February 14, 2026 Version: 1.0

Previous
Social Login
Next
Common Issues