Two step authentication (2SA) is a requirement by the Australian Tax Office and is mandatory for any user with access to Xero and provides an extra level of security for your account by including a unique 6-digit code at the time you login.
To login to your Xero account the following is now required:
- Email Address
- Password
- Authentication Code accessed via an authentication app
Download and install the authenticator app onto your nominated device:
Google Authenticator (Google Accounts Help Centre)
- iPhone
- iPad
- iPod Touch
- Android
- BlackBerry
Authy (Authy Website)
- iPhone
- iPad
- Android
- Mac Computers
- Windows Computers
- Windows Authenticator (Microsoft Stores)
- Windows Phones
Setting up Two Step Authentication (2SA) in Xero:
- Sign into your account by entering your email address and password and select Login
- Select set up Two Step Authentication (2SA) now
- Open your authenticator app, select the + symbol and scan the barcode
- To scan the barcode, hold your device over the barcode and fit within the outline until the the device scans the barcode
- The authenticator app will then provide you with a 6-digit code, enter and then select continue
- This code will change every 30 seconds
Xero will then prompt you to set up a recovery method, which can be used to login to Xero should you not have access to your authenticator app
Setting up the Recovery Method:
- Select 3 security questions, enter your answers and select continue
- An additional recovery option is to include an alternative email address, enter your address and select send code
- Enter the 6-digit code received via this email address and select confirm email
- Select finish
Two Step Authentication (2SA) has now been set up ready for the next time you log into Xero.
First time logging into Xero after setting up Two Step Authentication (2SA):
- Login to Xero by entering your email address and password
- Open your authentication app
- Enter you 6-digit authentication code and select Log in