cancel
Showing results for 
Search instead for 
Did you mean: 

Enable 2FA on an account

SOLVED
Highlighted
New Community Member

Enable 2FA on an account

Hi,

How does one enable any form of 2FA? preferably using Authenticator??

Seems like there's no option... The "Security key" option on the security settings page just reloads the page.

https://www.paypal.com/cgi-bin/webscr?cmd=_security-token

 

Regards.

1 ACCEPTED SOLUTION

Accepted Solutions
Moderator

Re: Enable 2FA on an account

Hi a1-_

2FA and the Security Key options are country specific and may not be available in your region. If the Security Key is available, it would be located in the “Security” section of your PayPal account. There is a heading for Security Key and an “Edit” button on the right hand side. When you click on edit it will ask you to register your mobile device.

PayPal are always expanding their services. If the Security Key is currently unavailable in your country, this may not be for long. Any new products or services offered by PayPal will be notified on the PayPal website.

Thanks,

Siobhan

6 REPLIES 6
Moderator

Re: Enable 2FA on an account

Hi a1-_

2FA and the Security Key options are country specific and may not be available in your region. If the Security Key is available, it would be located in the “Security” section of your PayPal account. There is a heading for Security Key and an “Edit” button on the right hand side. When you click on edit it will ask you to register your mobile device.

PayPal are always expanding their services. If the Security Key is currently unavailable in your country, this may not be for long. Any new products or services offered by PayPal will be notified on the PayPal website.

Thanks,

Siobhan

New Community Member

Re: Enable 2FA on an account

This is not an adequate response.  As a security professional, I think it is a big miss that PayPal does not offer the use of an authenticator app or something like Yubikey.  SMS authentication is not safe authentication.  Anyone with moderate knowledge of tech can intercept the codes.  If someone performs a SIM card swap, a popular attack today, your second factor is useless.  For all practical purposes, you have what looks like strong authentication to those who don't know better, but it falls far short.

New Community Member

Re: Enable 2FA on an account

I'm NOT impressed with PayPals lack of 2FA. They say you can use your cell phone to have an SMS pin sent for each time you log in. We all are well aware that that is not secure. How many times have you heard of people having their cell phones cloned or taken over by a hacker who takes over their cell phone service. That's pretty easily done now a days with the lack of Verizon and AT&T security. 

 

I have a personal and small business account. PayPals SMS "security feature" will only attach to one cell number. So, that leaves me completely vulnerable on one of my accounts.

 

Why won't PayPal institute a standard industry wide solution like google authenticator or Auth or some other standard. That is MUCH more secure than SMS. Come on PayPal, be a leader and not a follower who is using out of date technology.  Attn: PayPal Security Product Manager.... go take a security class and understand how vulnerable your company really is. UGH......

Moderator

Re: Enable 2FA on an account

Hey Geokona. 

 

Welcome to the Community!

 

We appreciate your feedback and we will ensure to get it forwarded to the relevant teams. This may be introduced in the near future and we are always trying to build on the current security systems that are integrated on our website. 

 

Rest assured, as soon as there are any new updates on this, you will see this on the PayPal website.

 

I hope this helps.

David.

New Community Member

Re: Enable 2FA on an account

I dont understand how the leading online payment service hasn't got 2 factor authentication as a top priority feature!

Its truly shocking for this to be a feature that paypal are only just now looking at!

 

Paypal - "Come do almost all your online shopping with us, but we dont provide simple 2 factor authentication to protect you or your money."

 

There was a hardware 2fa security key floating around, which didnt catch much traction, so surely the authentication model is there already?!

New Community Member

Re: Enable 2FA on an account

I use a One-time password generated by Google Authenticator or my password manager (1Password) for all of my accounts that support 2FA. But here in Canada, the authenticator option isn't available.

 

The SMS Security Key is *horrible*. Not only is it insecure, but for some strange reason, it can take up to 10 minutes to receive the PayPal SMS. By that time, my transaction may have timed out.

 

Paypal: Please do better.