We’ve always reputed passwords as one of the easiest methods to securing access to accounts. With Dropbox, you can log-in to your account using only your e-mail address and password. However, there might be more intelligence lying around you, trying to hack your account, so you may be thinking now of employing an extra layer of protection especially to your sensitive files. Dropbox calls this extra layer the Two-step verification.
The two-step verification is simple: it will ask you to enter a unique code even after the password is already entered to access an account. The security code is sent to the mobile device you have input in the settings, and to better things up especially in cases of emergency, a back-up code is given you as a last resort.
To enable the two-step verification:
- On your online Dropbox page, click on your name on the top right of the page to show you a list of options.
- Select Settings. This should refer you to another page.
- Under the Security tab, and under Account sign in section, locate the Two-step verification.
- Click on Enable. You’ll be greeted with an introduction of the feature. Simply click Get started.
- You’ll be asked of your password to verify that you are the owner of the account.
- Select if you want to get the code in the form of SMS (text message sent to you; mobile rates may apply) or via an ‘authenticator app (mobile app).’
- Select your country from the drop-down list of country codes, and enter the mobile number you want to use to receive the code. Click Next.
- You’ll receive a text message containing your code. Enter the code back on the Dropbox page.
- Enter a secondary phone just in case you lost this primary device (optional).
- Copy the emergency backup code posted on the screen. Be sure to keep this always with you and to keep it away from prying eyes.
- Click on the button Enable two-step verification.
Mobile app method
- You must have a TOTP (Time-based One-Time Password) authenticator app on your smartphone. Depending on platform, you can choose between Google Authenticator (http://goo.gl/xYbGn), Duo Mobile (http://goo.gl/cuz8V), Amazon AWS MFA (http://goo.gl/8HhAF), or Authenticator (http://goo.gl/SX6rg).
- Choose between scanning a QR code (app-dependent) to link Dropbox or via entering a secret key manually. The latter will be encoded directly to the app.
To log-in to your account, simply use the app to generate a code for you when asked.
Note: Using the app may or may not require data connection.
- You will now be asked for the security code aside from your standard log-in details every time you log-in to Dropbox or link a new device or computer.
When you lost your phone, you can simply click on the I lost my phone link found on the same page as the security code access page. You will be asked for your emergency back-up code to fully disable the feature and enable access using only your password.
To change the mobile number you want to use for the security code, simply go back to the Security tab in Settings, and click on change. This will repeat the set-up procedure.
For business accounts, the administrator has the abilities on his end to disable or enable the two-step verification feature on each collaborator accounts.