Set up two-factor authentication for your HubSpot login (2024)

Last updated: January 29, 2024

Typically, logging into HubSpot requires just your username and password. With two-factor authentication (2FA) turned on, logging in requires verification using a separate device, such as your mobile phone. Because logging in with 2FA requires that you have access to a physical device, the risk of a potential intruder gaining access to your account is much lower.

HubSpot provides primary and secondary methods of two-factor authentication to prevent a loss of access to your account due to the loss of a 2FA device. If you lose your 2FA device and do not have secondary methods of 2FA, you can reset your 2FA. The waiting period to reset your 2FA is a minimum of 48-72 hours.

2FA can be done when logging on through your HubSpot account or through Sign-In with Google. 2FA can be turned on as an SMS text message, or with an authenticator app, such as Google Authenticator, Microsoft Authenticator, or Duo. You can also set up 2FA using the HubSpot mobile app. If you already set up HubSpot 2FA with Google Authenticator but have switched to a new Android phone, you can transfer Authenticator codes to your new device.

2FA is requiredfor all HubSpotStarter, Professional,andEnterprise accounts. For free tools accounts, if you want users to log in using two-factor authentication, you must beasuper adminor havepermission to edit account defaults. Learn more about 2FA.


Please note:

  • The best way to ensure you retain access to your HubSpot account is to set up both primary and secondary methods for your 2FA login. When you set up 2FA, you will be provided with backup codes, which you can download as a PDF and save to your device. The file name is <your userId>_<download timestamp>.pdf. The combination of a primary and secondary 2FA method as well as stored backup codes for recovery will give you the most secure and reliable two-factor authentication setup for your HubSpot account.
  • There are different 2FA methods depending on your country or region.
  • When logging in with the Office 365 add-in integration, you cannot use theSign in with Google 2FA method. You must use your HubSpot email and password.

Turn on two-factor authentication for your login

To set up two-factor authentication in HubSpot:

  • In your HubSpot account, click the settings settings icon in the top navigation bar.
  • In the left sidebar menu, navigate toGeneral > Security.
  • In theTwo-factor authentication section, click Set up two-factor authentication (2FA).

Set up two-factor authentication for your HubSpot login (1)

  • If you're using a third party security app or you want to enter a code from a text message to secure your login, select the corresponding option and follow the on-screen instructions. If you want to use the HubSpot mobile app on an Android or iOS device for 2FA, click HubSpot mobile app:
    • If you haven't already installed the mobile app, you can use your phone's camera app to scan the QR code and download the latest version of the app.
    • On your device, you'll finish setting up 2FA:
      • You'll be prompted with a notification to continue 2FA setup. Tap the notification to proceed.
      • TapContinue.
      • TapConfirm.

Set up two-factor authentication for your HubSpot login (2)

      • TapDone to complete the setup on your device.
    • Back in HubSpot, clickNext.
  • As a last step of the setup process, you'll be provided with 10 backup verification codes. These codes can be used in case you lose your 2FA device. It is highly recommended you download these codes to avoid the 48-72 hour waiting period for a 2FA reset. Save your codes by clicking Print orDownload (PDF). If you download the backup codes to your computer, the default name of the PDF is <your userId>_<download timestamp>.pdf. You can rename the file if you want and you should keep the file in a secured location to protect from unauthorized access.If you generate new backup codes, the previously generated backup codes will no longer work.

    Set up two-factor authentication for your HubSpot login (3)

  • ClickNext.
  • ClickDone.

2FA will apply the next time you login to your HubSpot account.

Please note: if you encounter a message that reads This doesn't look right error after you enter the code, make sure that the time on your device or Google Authenticator app is syncing correctly. Learn how to correct the time on your device or Google Authenticator app.

After completing the 2FA process when logging in, you can choose your preference for how often you'll be prompted for 2FA:
  • Click Remember meto avoid being asked for 2FA for a short period of time.
  • Click Ask for 2FAevery time to force 2FA on your device every time you log in.

If you set up 2FA using the HubSpot mobile app, to access the 2FA prompt during the login process:

  • Open the HubSpot mobile app after entering your login credentials on your desktop, then click Yes for the following prompt:

Set up two-factor authentication for your HubSpot login (4)

  • If you are having trouble seeing the 2FA prompt on the HubSpot mobile app, you can access a verification code the following ways:
    • Tap Use verification code on the the 2FA prompt screen.
    • On the home screen of the HubSpot mobile app, tapMenu in the bottom navigation menu. Then, at the bottom of the left sidebar, tap the account name. UnderAccount, tapTwo-factor authentication (2FA), then use the code provided to complete 2FA.

Set up a secondary method

After setting up your primary two-factor authentication method, it's strongly recommended to set up a secondary method. A secondary method will allow you to log in to HubSpot if you can't access your primary method or backup codes.

To set up a secondary authentication method:

  • In your HubSpot account, click the settings settings icon in the top navigation bar.
  • In the left sidebar menu, navigate toGeneral>Security.
  • In the Two-factor authentication section, you'll see your primary 2FA method listed, along with an option to set up a secondary method of either 2FA text messages or a third party security app. If you choose 2FA text messages, it is recommended you set up a trusted phone number:
    • To add a trusted phone number, in the Trusted Phone Number section, clickAdd a trusted phone number.
    • On the Trusted Phone Number screen, type your phone number in the text box.
    • Click Next.
    • A six-digit code will be sent to the phone number. Type the code in the text box, then click Next.
    • A verified screen will appear after you input the six-digit code. Click Done.
  • After setting up a trusted phone number, or if you're selecting a third party security app, click Text message or Third party security app. Follow the on-screen instructions to finish setting up your secondary method.

Turn off two-factor authentication for your login

If you have a free tools account, you can only turn off two-factor authentication for your login. All Starter,Professional, andEnterprise accounts will have 2FA enabled without the option of turning it off.

Please note: it is highly recommended that you keep 2FA enabled to protect your account. Because logging in with 2FA requires you to have access to a secondary device, the risk of a potential intruder gaining access to your account is much lower.

To turn off 2FA for your login:

  • In your HubSpot account, click the settings settings icon in the top navigation bar.
  • In the left sidebar menu, navigate to General > Security.
  • In the Two-factor authentication section, clickRemove [Primary method], and if enabled,Remove [Secondary method].

Set up two-factor authentication for your HubSpot login (5)

  • In the dialog box, input the 2FA code sent to your primary or secondary method. If you don't have access to either method, but have your backup codes, clickUse a backup code. If you don't have access to any of these methods, click Lost your authentication device? to reset your 2FA to regain access to your account. Once you regain access to your account, you can then disable 2FA.

Set up two-factor authentication for your HubSpot login (6)

  • In the next dialog box, clickTurn off.
  • After you have turned off your primary and secondary method for 2FA, you will no longer need 2FA to access your account.

Require two-factor authentication for all users

If you're a super admin or have permissions to edit account defaults, you can require every user in the account to use two-factor authentication. 2FA is requiredfor all HubSpotStarter, Professional,andEnterprise accounts.

  • In your HubSpot account, click the settings settings icon in the top navigation bar.
  • In the left sidebar menu, navigate to Security. Click the Settings & Activity tab at the top.
  • Under the Login section, click theRequire Two-Factor Authentication (2FA) checkbox.
  • In the dialog box, click Yes. When two-factor authentication is turned on, it cannot be disabled in the account.

Please note: once the switch is toggled on, the requirement will only take effect after 24 hours. The 24-hour grace period is for users to set up their two-factor authentication method, if they haven't done so yet. If a user does not set it up after 24 hours, they will be asked to set it up next time they log in to HubSpot.

Once turned on, every user in the account will receive an email and an in-app notification to turn on two-factor authentication in their account.

  • Users who already have set up their two-factor authentication methods will be reminded to generate back-up codes.
  • Users who have not set up their two-factor authentication method can set it up via a CTA in the email or through a prompt in the notification. HubSpot will then guide the user through adding their mobile device to their account. This device will be used for verification each time they log in.

Learn more about what happens when you turn on or require two-factor authentication and SSO at the same time.

Set up two-factor authentication for your HubSpot login (2024)

FAQs

How to set up two-factor authentication on HubSpot? ›

In your HubSpot account, click the settings settings icon in the top navigation bar. In the left sidebar menu, navigate to Security. Click the Settings & Activity tab at the top. Under the Login section, click the Require Two-Factor Authentication (2FA) checkbox.

How do I enable two-factor authentication on my account? ›

Turn on 2-Step Verification
  1. Open your Google Account.
  2. In the navigation panel, select Security.
  3. Under “How you sign in to Google,” select 2-Step Verification. Get started.
  4. Follow the on-screen steps.

How do I add HubSpot to the authenticator app? ›

On the left-hand navigation bar, click “Security.” Under “Two-Factor Authentication” click on the button that reads “Set up primary method.” On the next screen, you're given the choice of setting up 2FA via Google Authenticator or SMS. Select Google Authenticator.

Do you need MFA for HubSpot? ›

Two-factor authentication is required for all HubSpot Starter, Professional and Enterprise accounts. For HubSpot free tools accounts, if you want to ensure all users log in using two-factor authentication, you must be a super admin or have permission to edit account defaults.

How to reset HubSpot 2FA? ›

If you've locked yourself out and your not the super admin, you can request a 2FA reset from a super admin in your portal. You'll be redirected to a page where you can send an email to HubSpot. The HubSpot team will then ask you to fill out a form to verify your identity.

How do I turn off two-factor authentication for another user HubSpot? ›

See screenshot below you can turn it of via Settings > Accounts defaults > Security > 2FA turn off.

Why can't i use two-factor authentication? ›

After you've set up two-factor authentication (2FA), the codes generated by your authenticator app may stop working. This commonly happens due to time sync issues. 2FA systems use global universal time (UTC). Your user device executes a time service to stay in sync with UTC.

How to create a 2FA code? ›

How to Create a 2FA Generator: A Step-by-Step Guide
  1. Step 1 - Third Party Scripts. In this example we use the npm package “jsSHA” to generate a HMAC hash. ...
  2. Step 2 - HTML Elements. ...
  3. Step 3 - Constants. ...
  4. Step 4 - HEX Value. ...
  5. Step 5 - Hexadecimal to Decimal. ...
  6. Step 6 – One-time Password HMAC. ...
  7. Step 7 - Timer. ...
  8. Step 8 - On load.
Mar 7, 2024

How to set up two-factor authentication on Authenticator app? ›

To set up the Microsoft Authenticator app. Sign in to your work or school account and then go to your My Account portal. Select Security info in the left menu or by using the link in the Security info pane. If you have already registered, you'll be prompted for two-factor verification.

What happens if you forgot two-factor authentication? ›

If you've lost access to your 2FA device, you can recover your account by using backup codes, alternative recovery options like a secondary email or phone number, or by contacting customer support. Be ready to confirm your identity by answering a few security questions or providing proof of ID.

How do I reset my 2FA Authenticator? ›

Resetting my TOTP 2FA (Authenticator App)
  1. Go to Menu > Settings > Security.
  2. Tap Recover 2-factor authentication access, then tap Continue and select Recovery by email.
  3. You will get an email within the next 24 hours for you to confirm and continue the process.
Jan 5, 2024

How to setup HubSpot 2FA? ›

To set up two-factor authentication in HubSpot:
  1. In your HubSpot account, click your account name in the top right corner, then click Profile & Preferences.
  2. In the left sidebar menu, click Security.
  3. In the Two-step verification section, click Set up primary method and follow the on-screen instructions.

Does HubSpot have a mobile app? ›

You can download the HubSpot app from either the App Store (iOS devices) or Google Play Store(Android devices), or by scanning the QR code below.

Do I have MFA enabled? ›

To check MFA status of your users,

Choose Identity from the menu, then go to Users and select All Users. Click on the Per-user MFA option among the choices listed above. You will be directed to the multi-factor authentication page, where you can view the MFA status of all your users.

How do you set up two-factor authentication on all online accounts? ›

Enabling Two-factor authentication depends on the account, but is found in the Account Security settings.
  1. Open Account Settings and navigate to Security Settings.
  2. Look for Two-Factor Authentication or Two-Step Verification.
  3. Provide the required information to complete the configuration.
Jan 23, 2024

How do I get my two-factor authentication backup code? ›

Create & find a set of backup codes
  1. On your Android phone or tablet, open the Settings app.
  2. Tap Google. Manage your Google Account.
  3. At the top, tap Security.
  4. Under "How you sign in to Google," tap 2-Step Verification. You may need to sign in.
  5. Under "Backup codes," tap Continue .
  6. From here, you can:

How do I enable two-factor authentication on cloud? ›

Enabling two-step verification
  1. Sign in to the Cloud Platform user interface with the Owner or Administrator role and select the application you want to work with.
  2. In the navigation pane, click Security.
  3. On the Security page, click Edit Settings. ...
  4. In Two-step verification, select Enabled.
  5. Click Save.

Top Articles
Latest Posts
Recommended Articles
Article information

Author: Carmelo Roob

Last Updated:

Views: 5766

Rating: 4.4 / 5 (45 voted)

Reviews: 84% of readers found this page helpful

Author information

Name: Carmelo Roob

Birthday: 1995-01-09

Address: Apt. 915 481 Sipes Cliff, New Gonzalobury, CO 80176

Phone: +6773780339780

Job: Sales Executive

Hobby: Gaming, Jogging, Rugby, Video gaming, Handball, Ice skating, Web surfing

Introduction: My name is Carmelo Roob, I am a modern, handsome, delightful, comfortable, attractive, vast, good person who loves writing and wants to share my knowledge and understanding with you.