Login alerts and two-factor authentication

 Login alerts and two-factor authentication

Managing your alerts and authentication methods

You can improve the security of your Facebook account by getting an alert when someone tries logging in from a device or web browser that we don't recognise. These alerts will tell you which device tried logging in and where it's located.

Get alerts about unrecognised logins

1. Click on your profile picture in the top right, then click Settings and privacy.
2. Click Settings.
3. Click Accounts Centre, then click Password and security.
4. Click Login alerts.
5. Choose where you want to receive your alerts, such as from your email account or with a Facebook notification from a recognised device.

After you start getting alerts about unrecognised logins:

• When you receive a login alert, you can tell us if you recognise the login activity by clicking or tapping This was me.
• If you don't recognise the login activity, click or tap This wasn't me and we'll help you reset your password and secure your account.
• You can save a device or browser to your list of trusted browsers or recognised devices. This way, you won't get alerts about the computer or mobile device that you usually use to log in to Facebook. Don't choose this option if you're using a public computer (such as one in a library or cafe).

Two-factor authentication is a security feature that helps protect your Facebook account and your password. If you set up two-factor authentication, you'll be asked to enter a special login code or confirm your login attempt each time someone tries accessing Facebook from a browser or mobile device that we don't recognise. You can also get alert when someone tries logging in from a browser or mobile device that we don't recognise.

Turn on or manage two-factor authentication

1. Click on your profile picture in the top right, then click  Settings and privacy.
2. Click Settings.
3. Click Accounts Centre, then click Password and security.
4. Click Two-factor authentication, then click on the account that you'd like to update.
5. Choose the security method that you want to add and follow the on-screen instructions.

When you set up two-factor authentication on Facebook, you'll be asked to choose one of three security methods:

• Tapping your security key on a compatible device.
• Login codes from a third-party authentication app.
• Text message (SMS) codes from your mobile phone.

Once you've turned on two-factor authentication, you can get ten recovery login codes to use when you're unable to use your phone. Learn how to set up recovery codes.

Other useful resources

• If you haven't saved the browser or mobile device that you're using, you'll be asked to do so when you turn on two-factor authentication. This way, you won't have to enter a security code when you log in again. Don't click Save this browser if you're using a public computer that other people can access (e.g. a library computer).
• We need to be able to remember your computer and browser information so that we can recognise it the next time you log in. Some browser features block this. If you've turned on private browsing or set up your browser to clear your history every time it closes, you might have to enter a code every time you log in. 
• To set up text message (SMS) two-factor authentication, you can either use a mobile number that's already been added to your account or add a new number.  about how Facebook uses a mobile number added for two-factor authentication.

Fix a problem with two-factor authentication

In order for you to use login alert we need to be able to remember your computer, mobile device and web browser information so that we can recognise it the next time you try logging in.

If you're being asked to name a device that you've already logged in from:

• Make sure that your device is listed in your Authorised Logins in your security and login setting You can save a device or browser to your list of trusted browsers or recognised devices after you've logged in.
• If you're using private browsing or incognito mode on your mobile device or your computer's web browser, Facebook may not be able to recognise your device the next time you log in. Try Turing off private browsing or incognito mode when you use Facebook.

Review resent Facebook login

If you have -------------- turned on, you'll be asked to review recent logins whenever someone tries to log in to your account and doesn't provide a security code. We'll show you where this happened and you can let us know whether it was you (by clicking This was me) or not (by clicking This wasn't me).

If you approve the login attempt, you'll also have the option to remember the web browser or mobile device to log in more quickly in the future. You should only do this if that computer or mobile device belongs to you.

If you don't recognise the web browser or mobile device, follow the directions provided to secure your account. After you get back in to your account, you may want to