Two-step authentication using a security key
You can use a security key that's compatible with the WebAuthn standard as a second factor for logging in to your account. To activate two-step authentication with a security key, you need a compatible browser and a compatible security key. After you enroll a new security key on your account, you're prompted to activate the security key whenever you log in.
To avoid being locked out of your account, you can enroll multiple security keys and multiple two-step authentication methods.
The following browsers are compatible with security keys:
- Google Chrome for desktop version 67 and above
- Mozilla Firefox for desktop version 60 and above
- Google Chrome for Android version 73 and above
- Mozilla Firefox for Android version 66 and above
- Microsoft Edge version 18 and above
- Opera version 54 and above
- Safari Technology Preview 83 or later
- Brave for iOS version 1.11.3 and above
Recommended device manufacturers include the following brands:
Steps:
- From your Shopify admin, click your store name in the topbar.
Click Manage account > Security.
In the Two-step authentication section, click Turn on two-step.
Enter your password, and then click Next.
From the Authentication method list, select Security key.
Enter a name for your security key, and then click Turn on.
Click USB security key.
Activate your security key. You're provided with a list of 10 recovery codes.
Optional: Create a backup authentication method that you can use in case your primary authentication method is unavailable.
-
Save your recovery codes in case you're unable to use your primary or backup authentication method. Make sure that you store or save the recovery codes in multiple ways, including the following examples:
Now when you try to log in, your security key needs to be connected to your device for two-step authentication.