Overview
For added security, we encourage you and everyone in your organization to use either Google OAuth to log in or to set up two-factor authentication (2FA) for your Shortcut account. If you’re using Google to sign in, you won’t be prompted for 2FA from Shortcut—instead, enable 2-Step Verification for your Google Account.
If you want to add 2FA to your Shortcut account in addition to using Google OAuth, you may need to set a password before you can add 2FA.
Turning on Two-Factor Authentication
- Navigate to your profile icon or photo
- Select Settings
- Select Security under Your Account
- Select Two-Factor Auth
- Re-enter your Shortcut password when prompted, then press Continue
- Scan the QR code with your authenticator app
- Enter the code from your app and select Confirm
- Copy your Recovery Code somewhere safe, then select OK, I saved my recovery code
Important: Save your recovery code in a secure location. You’ll need it if you lose access to your authenticator app.
Logging in with Two-Factor Authentication
- Enter your username or email
- Enter your password
- Select Log In
- Enter your two-factor authentication code from your authenticator app (e.g., Google Authenticator, Authy)
- Select Log In again
Using Your Recovery Code
If you cannot access your authenticator app (for example, if you’re logging in from a new device), you can log in using your recovery code:
- On the login screen or 2FA screen, select Need to use your recovery code?
- Enter your recovery code
If you’ve misplaced your recovery code, have someone with Owner or Admin permissions contact Shortcut Support to have your 2FA disabled.
Turning off Two-Factor Authentication
- Navigate to your profile icon or photo
- Select Settings
- Select Security under Your Account
- Select Two-Factor Auth
- Re-enter your Shortcut password and the code from your authenticator app
- Select Disable 2FA