Managing two-step verification

Two-step verification is a two-step sign-in process that requires a one-time code from a mobile app, phone call, or text message in addition to the main Zoom sign-in for users with the work email (email and password) login type. This provides an additional layer of security since users will need access to their phone to sign in to the Zoom web portal, desktop app, mobile app, or Zoom Room.

Admins can enable two-step verification for users, requiring them to set up and use two-step verification. Admins can also reset an existing two-step verification setup if a user has lost access to their authenticator app or verified device.

Note: If two-factor authentication is disabled, users with a work email login type are required to enter a time-based one-time password (OTP) sent to their email if Zoom detects an unusual login from a different country or device than normal.

Requirements for two-step verification

Enable two-step verification

Set up and use two-step verification

Table of Contents

How to enable two-step verification (admin)

You can enable two-step verification for all users in your account, users with specific roles, or users in specific groups.

  1. Sign in to the Zoom web portal as an admin.
  2. In the navigation menu, click Advanced then Security.
  3. Under Security, click the Sign in with two-step verification toggle to enable or disable it.
  4. If a verification dialog appears, click Enable or Disable to verify the change.
  5. Select one of these options to specify the users to enable two-step verification:
  6. If user roles or groups were specified, click Save to confirm the changes.
    Note: You can share the instructions to set up two-step verification with your users.
  7. Under Authentication methods, enable or disable one of the following authentication methods.
  8. Click Save to apply your changes.

Reset two-step verification for a user

You can reset a current two-step verification setup if a user has lost access to their two-step verification setup. For example, they misplaced their device, uninstalled the two-step verification app, or removed Zoom from their two-step verification app.

  1. Sign in to the Zoom web portal as an admin.
  2. In the navigation menu, click Advanced then Security.
  3. Under Security, click Reset two-step verification.
    A pop-up window will appear.
  4. In the window, enter the email addresses or usernames that you want to reset.
    Note: All the selected users' configurations will be reset.
  5. Enter your password to reset the two-step verification.
  6. Click Reset for ___ User(s) to confirm.

How to turn on and turn off two-step verification from the Profile page (user)

  1. Sign in to the Zoom web portal.
  2. In the navigation menu, click Profile.
  3. Under Sign In, to the right of Two-Step Verification, do the following actions:
  4. Enter your password to turn on or turn off two-step verification.
  5. If a verification dialog appears, click Next to enable two-step verification, or click Turn off to disable two-step verification.

How to set up two-step verification (user)

If your Zoom admin has enabled two-step verification for you, you must set up two-step verification when you sign in to the Zoom portal.

  1. Sign in to the Zoom web portal after your admin has enabled two-step verification.
  2. Select Authentication App or SMS as your authentication method.
  3. Follow one of these sections depending on what you selected:

Set up two-step verification through the authentication app

You can use any app that supports Time-based One-time Password (TOTP) protocol, including Google Authenticator (Android/iPhone) and Authenticator (Windows Phone 7).

  1. Sign in to the Zoom web portal.
  2. In the navigation menu, click Profile.
  3. Under Sign In, in the Two-Step Verification section, to the right of Authentication App, click Set Up.
  4. Enter your password to turn on two-step verification.
  5. Click Next.
  6. Scan the QR code below to register for an account on an authenticator app of your choice.
    The two-step verification app will generate a 6-digit, one-time code.
  7. Click Next.
  8. Enter the 6-digit code, then click Verify.
    Zoom will display a list of recovery codes. If you lose your mobile device, you can use a recovery code instead of a generated 6-digit code to sign in.
    Note: If you aren't able to verify the code. Click Back to display the QR code again.
  9. Click Download or Print to store the recovery codes. Each recovery code can only be used once.
  10. Click Done.

Set up two-step verification through SMS

Zoom will send you a text message with a one-time code that you can use to sign in to your account.

  1. Sign in to the Zoom web portal.
  2. In the navigation menu, click Profile.
  3. Under Sign In, in the Two-Step Verification section, to the right of Phone, click Set Up.
  4. Enter your password to turn on two-step verification.
  5. Select a country code for your phone number.
  6. Enter a phone number where you will receive two-step verification codes.
    Note: Do not enter any hyphens.
  7. Under Send Verification Code via, select either Text message (SMS) or Phone call.
  8. Click Send code.
    Zoom will send a 6-digit, one-time code to your number.
  9. After you receive the SMS or phone call from Zoom, enter the code in the Zoom web portal.
  10. Click Verify.
    Zoom will display a list of recovery codes. If you lose your mobile device, you can use a recovery code instead of a generated 6-digit code to sign in.
    Note: If you aren't able to verify the code. Click Back, and then try again.
  11. Click Download or Print to store the recovery codes. Each recovery code can only be used once.
  12. Click Done.

How to sign in using two-step verification (user)

Use the authenticator app

  1. Sign in to the Zoom web portal, desktop app, mobile app, or Zoom Room.
  2. Enter your password.
  3. Access your authentication app to receive a verification code.
  4. Enter the code from the authenticator app.
  5. Click Verify.

Use phone verification

  1. Sign in to the Zoom web portal, desktop app, mobile app, or Zoom Room.
  2. Enter your password.
  3. Select one of the following phone verification methods:
  4. Enter the verification code that you have received from the phone call or SMS.
  5. Click Verify.

How to sign in using a two-step verification recovery code (user)

If you no longer have access to your two-step verification codes (for example, you misplaced your device, uninstalled your two-step verification app, or removed Zoom from the two-step verification app, you can sign in using a recovery code you obtained when you set up two-step verification.

Note: You can also contact your admin to reset your two-step verification setup. When you sign in to the Zoom web portal, desktop app, or mobile app, you will be prompted to set up two-step verification again.

  1. Sign in to the Zoom web portal, desktop app, mobile app, or Zoom Room.
  2. Enter your password.
  3. At the bottom of the page, click Try another way.
  4. Click Recovery codes.
  5. Enter one of the recovery codes you obtained during setup.
    Note: Each recovery code can only be used once.
  6. Click Verify to sign in.
  7. (Optional) If you lost access to your two-step verification device, edit your existing two-step verification setup to add a new device.

How to edit your two-step verification setup (user)

After setting up two-step verification, you can edit your existing setup if you want to remove a device, set up two-step verification on another device, or view recovery codes.

  1. Sign in to the Zoom web portal.
  2. In the navigation menu, click Profile.
  3. Under Sign In, in the Two-Step Verification section, use these options to set up two-step verification on a new device or remove an existing setup: