2FA (two-factor authentication) is an added layer of security that helps protect your account. 2FA is a second “factor” — usually a one-time code generated by an authentication app or sent via SMS.
Why Do I Need a One-Time Password If I Use a Passkey?
Passkeys are secure, but they don’t cover every scenario — for example, when you’re signing in from a new browser or device.
That’s where 2FA (two-factor authentication) comes in. It adds an extra layer of protection to ensure that even if someone gains access to your passkey, they still can’t act without a second form of verification — a time-sensitive one-time password (OTP).
Since your 2FA code can be stored separately — for example, your passkey may live on your computer, while your 2FA code is generated by an authenticator app on your phone — it becomes much harder for attackers to gain full access to your account.
Even if one device is compromised, the attacker won’t be able to confirm critical actions or access your funds without the second factor.
How Does 2FA Work In Bron?
Bron uses TOTP (Time-Based One-Time Passwords) for two-factor authentication. These are 6-digit codes generated by an authenticator app (like Google Authenticator, 1Password, or similar) on your device.
Bron will ask for your 2FA code in the following cases:
When logging in from a new browser or device
After you log out and sign back in
You can also use a 2FA code instead of your passkey when performing critical actions, such as creating a new vault account or updating policy rules.
Each time you're prompted, open your authenticator app, find the 6-digit code for Bron, and enter it. The code refreshes every 30 seconds and can be used only once.
How To Store And Manage Your 2FA Codes
We recommend using a trusted authenticator app such as:
Google Authenticator
Microsoft Authenticator
1Password or Bitwarden (with built-in TOTP support)
Important tips:
Never store your 2FA secret code in plain text or as a screenshot.
Back up your 2FA app or use one that syncs securely across devices (such as 1Password).
Consider enabling biometric or PIN access on your authenticator app for added protection.
How To Set Up 2FA In Bron
Setting up 2FA is quick and highly recommended. Here’s how to do it:
Go to Account Settings > Security
Choose Enable 2FA
Bron will show you a QR code
Open your authenticator app and scan the QR code. Alternatively, switch to 'Enter manually' mode, then copy the secret key and paste it into your authenticator app
Enter the 6-digit code shown in your app to confirm
Once verified, your 2FA setup is complete. Bron will now prompt you for a code when required.
What if I Lose My Authenticator App?
If you lose access to your 2FA codes — for example, if you lose your phone or uninstall your app — don’t worry.
Here’s what to do:
If you're still logged in, go to Account Settings > Security and reconfigure your 2FA.
Use a backup device, if you’ve synced your authenticator app.
If no backup exists, contact Bron Support at support@bron.org or via in-app chat. We’ll guide you through the secure recovery process.
To avoid lockout, we strongly recommend setting up a backup method before you need it.
If you have questions, contact our support team via messenger on the Bron platform or by email support@bron.org.