KNEWTE
|
Account
Two-Factor Authentication (2FA)
Module: Account (Updated: 19/01/2026)
« Back to Help

Two-Factor Authentication (2FA)

Two-Factor Authentication (2FA) adds an extra layer of account protection by requiring a short verification code in addition to your password. This page walks you through receiving a code by email and validating it to complete authentication.

What you can do on this page

  • 1. Send a one-time verification code to the email address masked on the page.
  • 2. Enter the verification code you received and click Validate to complete authentication.
  • 3. If you did not receive the code, click Send Code again to request a new one.
  • 4. Click Sign Out to cancel the authentication attempt and return to the sign-in page.

Page layout

  • Info text — explains where the code will be sent and shows the masked recipient email for privacy.
  • Code entry — a short text field to paste or type the verification code.
  • ActionsValidate, Send Code, and Sign Out buttons.
  • Error panel — displays server or validation errors at the top of the page.

Typical flow

  1. Click Send Code to request a one-time code sent to the masked email address displayed on the page.
  2. Open your email, copy the code and enter it into the Enter Code field on this page.
  3. Click Validate. If the code is correct and has not expired, authentication completes and you are signed in.
  4. If the code is not received or has expired, click Send Code to request a fresh code and try again.

Code validity and timing

  • 1. Codes are short-lived for security; enter the code promptly after receipt.
  • 2. The system may rate-limit resend requests to prevent abuse — wait a short interval if resends are blocked.
  • 3. Do not refresh or navigate back in the browser while the flow is in progress, as this may invalidate the session or code.

Errors and troubleshooting

  • 1. If the code is rejected, confirm you entered the latest code and that no extra whitespace was pasted.
  • 2. If the Send Code action fails, check for server errors displayed in the Error Panel and try again after a short wait.
  • 3. If you do not receive the email, check spam/junk folders and verify the masked email shown is an address you control.
  • 4. If you are unable to complete 2FA and cannot sign in, contact support and provide the timestamps and any error text shown; do not share verification codes.

Security best practices

  • 1. Treat verification codes like passwords — do not share them with anyone.
  • 2. If possible, enable a persistent second factor (authenticator app or hardware token) for stronger protection.
  • 3. Keep your recovery email address up to date so you can receive codes reliably.

Notes

  • Some email providers may delay delivery; if delivery is consistently slow consider using an alternative contact method provided by your organisation.
  • For shared devices, always use Sign Out when finished to protect your account.