2-step verification (also known as 2-Factor Authentication or Multi-Factor Authentication) allows you to add an extra layer of security to your 23andMe account. 2-step verification is required to access a 23andMe account and customers can choose between using email- based authentication, SMS-based authentication or a third party authenticator application.
By using 2-step verification to access your 23andMe account, you’ll sign in to your account in two steps:
- Enter your account email address and password
- Enter the 6 digit verification code received via email, SMS, or from a connected authenticator app
You have the option to select the "Remember me" check box during the sign-in process so future sign-ins from the same browser on the same device will no longer require a verification code. We recommend performing this action on trusted devices only.
If you sign in to your 23andMe account using Apple or Google sign in, you will not be required to use 2-step verification; however, if you wish to set up 2-step verification, you can unlink your Apple or Google account directly within your account settings in order to enable this feature. Once unlinked, you will be enrolled in email-based verification automatically.
What is Email-Based Verification?
23andMe offers email-based verification, in which the time-sensitive verification code is sent directly to your 23andMe account email address. Verification codes sent via email are valid for 10 minutes and can be copied and pasted directly into the “Verification Code” field at sign in.
When creating a 23andMe account, you are automatically enrolled in email-based verification if you do not link the account to your associated Google or Apple account; however, you can switch to an alternate verification method at any time within your account settings.
What is SMS-Based Verification?
SMS verification, or text message verification, requires that you provide 23andMe with your mobile phone number so the verification code can be received by text message on your preferred mobile device. Similar to email verification codes, SMS codes are valid for 10 minutes.
Once SMS-based verification is enabled, you can switch to app-based verification within your account settings; however, you cannot switch to email-based verification.
What is an Authenticator Application?
An authenticator application adds a 2-step verification process by also using a time-sensitive verification code; however, this code is generated by an authenticator app. To receive the code, you’ll first need to download an authenticator app on your mobile device before being able to connect it to your 23andMe account in your account settings.
Google Authenticator™ mobile app is a popular authenticator option, but you can use any application that supports the Time-based One-Time Password (TOTP) protocol.
Once app-based verification is enabled, you can switch to SMS-based verification within your account settings; however, you cannot switch to email-based verification.
Enabling SMS-Based 2-Step Verification
You can enable SMS-based 2-step verification directly within your account settings by following the steps below:
- Navigate to your account settings and click “edit” under the top portion of your settings where your account information is located
- Click “Switch to SMS-based 2-Step Verification” under the Account Information section
- Enter your 23andMe account password and the verification code received via email
- Enter your preferred mobile phone number
- Enter the verification code sent to your mobile device
Enabling Authenticator App-Based 2-Step Verification
You can enable app-based 2-step verification directly within your account settings by following the steps below:
- Navigate to your account settings and click “edit" under the top portion of your settings where your account information is located
- Click “Switch to app-based 2-Step Verification”
- Enter your 23andMe account password and the verification code received via email
- Open your preferred authenticator app to scan the QR code shown within your account
- Enter the verification code or token shown in your authenticator app
Switching from Authenticator App-Based 2-Step Verification to Email-Based 2-Step Verification
You can switch between authenticator app-based 2-step verification and SMS-based verification at any time within your account settings. In order to complete this action you will need access to the mobile device which has either verification method enabled. Follow the steps below to switch:
- Navigate to your account settings and click “edit” under the top portion of your settings where your account information is located
- Click “Switch to app-based 2-Step Verification” or “Switch to SMS-based 2-step verification” under the top portion of your settings where your account information is located
- Enter your 23andMe account password and the verification code sent via SMS or from your preferred authenticator app (which you are currently using)
- Enter the verification code sent via SMS or from your preferred authenticator app (which you are switching to)
If you have lost access to the mobile device associated with either SMS-based or app-based verification, contact us for assistance.
©2025 Google LLC All rights reserved. Google Authenticator is a trademark of Google LLC.