What is MFA, and how to enable it

Multi-factor authentication (MFA) is a security mechanism used to verify the identity of a user by requiring the presentation of two or more authentication factors: password, PIN, token, USB security key, fingerprint, or facial recognition.  

There are two MFA options for Nord Account:

• You may use authenticator applications to generate a code, such as Google Authenticator, Microsoft Authenticator, Authy, or any other. Any one of those apps will create a code that you must enter whenever accessing Nord Account. The code changes every 30 seconds. 
   
• A second option is to use a security key. It can be a Bluetooth, NFC, or USB security key that will hold a unique PIN and ensure effortless access only for you. Nord Account supports USB security keys certified by FIDO2. That includes the Security Key series, Yubikey 5 series, iePass FIDO K44, MultiPass FIDO K25, ePass FIDO NFC K9 and K35, BioPass FIDO K26 and K27, and others. 
   

How to enable MFA for your Nord Account?

1. Log into your Nord Account.
   
   
   
2. If you are using a desktop device, click on your account name in the top right corner and choose Account Settings. Switch to a Multi-factor authentication (MFA) section, and click on Manage MFA.
   
   
   On a mobile device, tap on the free line sign, scroll down to the bottom of the menu, where you find Account Settings, select Multi-factor authentication and tap on manage MFA.
   
   
   
    
   
   
3. On both, desktop and mobile, you will be asked to verify your email address. To do so, enter the verification code you have received to your NordVPN account associated email to verify it.
   
    
4. From there, select Set up next to the Authenticator app.
   
   
    
5. This action will generate your QR code and key. Open your mobile authentication application (such as Duo Mobile, Authy, etc.) and scan the QR code or manually enter the key. Once your account is saved in the authenticator application, return to the Nord Account website and click Continue.
   
   
   
6. Enter the MFA code generated by your mobile authentication application.
   
   
   
   
7. Before finishing the MFA setup, make sure to save your backup codes here. When done, click Continue.
   

As another option, you can use a security key to add MFA feature.

1. Choose set up next to the Security key option in your Nord Account settings.
    
   
   
2. Follow the steps shown. Setup steps may differ depending on the security key.
   
3. Once you have finished the setup, a physical security key will be needed to log into your Nord Account.
    
4. In the end, you will be suggested to log out from all devices. We strongly recommend doing that so that all of your devices that are used with Nord Account would be instantly protected with MFA.