Why do we use OTP codes and Two-Factor Authentication (2FA)?

To keep your Monflo account secure, we use OTP codes and Two-Factor Authentication (2FA) during onboarding and login.

OTP Codes (One-Time Passwords)

During onboarding, we ask for your email address and mobile phone number. To verify that these details are truly yours, we send a 6-digit OTP code to both.

- You’ll be asked to enter these codes on the second screen of the onboarding process.

- Only enter the codes, not your email or phone number again.

- Check your spam or junk folders if you don’t see the OTP emails or SMS.

OTP codes are:

- Single-use (each code can only be used once)

- Temporary (they expire shortly after being sent)

- Secure (they help prevent unauthorized access)

Two-Factor Authentication (2FA)

2FA adds an extra layer of protection by requiring a unique 6-digit code generated by an authenticator app on your phone (e.g., Google Authenticator or Microsoft Authenticator).

Ensure that the device you use for 2FA has Automatic date and time enabled to avoid synchronization issues.

How it works:

- During onboarding (Step 3), you’ll scan a QR code using your authenticator app.

- This adds a Monflo token to the app, which generates a new code every 30 seconds.

- When logging in, you’ll enter this code after your username and password.

Using 2FA with Monflo:

- Open your authenticator app.

- Find the entry labeled Monflo.

- Enter the current 6-digit code when prompted.

Can’t find the app? 

Search your phone for “Authenticator.” If you still can’t locate it or accidentally deleted it, please contact Monflo Support for help.