TABLE OF CONTENTS


What is MFA?

CoinList uses multi-factor authentication (MFA), also known as 2FA, which provides an additional layer of security to protect every account. You use MFA to log in to your account and access functions of CoinList such as your wallet. CoinList does not support SMS Authentication. 


The mobile device you use to set up MFA will be considered your MFA device. Once MFA is enabled, you'll be required to enter a code created by an app on your phone in order to log in to your CoinList account. 


How do I enable MFA?

STEP 1

Download and install an authentication app for your phone or tablet. Some options:


STEP 2

Open the authentication app and follow the steps within the app for adding a new QR code. Scan the QR code image with your mobile device's camera and a new credential will be added to your authenticator app. 

 

Make sure to save the security/backup codes in a safe place. In the event that you lose access to your MFA device, these codes can be used to regain access to your account. The backup codes are unique to each account owner. 


STEP 3

Enter the six digit code where prompted and click the "Enable" button.



You are done! Now that MFA is enabled, you will need to enter a new 6-digit code generated by the authentication app every time you log in to your CoinList account. 


What if I get an invalid code error?

If you receive an invalid error code when enabling MFA, check that your authentication app and your mobile device’s current time zone are synced. Also ensure that the computer or device you’re setting up your CoinList account on is also synced to the correct time zone. Refreshing your CoinList account may also resolve the issue.


If you are still experiencing issues, create a new profile by clicking the "+" again on your app and try to add the QR code again. Clearing your cache and cookies may also resolve the issue. 


Security Page of Your CoinList Account

You can reach the Security page by selecting “Your Account” from the dashboard or by following this link: https://coinlist.co/accounts/security.  



If you did not save your backup codes when they were first provided, you can access them through the Security page of your CoinList account. If you lose access to your MFA device, these one-time codes will allow you to regain access to your account. 


If you use a backup code to log in to your account, you will need to reset MFA and add a new credential to your authentication app. This will allow you permanent access to MFA rather than continuing to use your limited number of backup codes to log in. 


To reset MFA, follow the below steps. 

  1. On the Security page, under Two-Factor Authentication, click “Disable” 

 


  1. Follow the steps on screen to re-enable MFA


What if I no longer have access to my MFA device or the backup codes?

If you no longer have access to your MFA device, then the first step is to use the backup codes you received when you first set up MFA to regain access to CoinList. If you do not have access to your backup codes, you will need to reset MFA. Submit a ticket through our support site for assistance and instructions. 


You will not be able to access your account until this process is complete. 


If you have lost access to your MFA device, do not attempt to create a new account. CoinList does not accept duplicate accounts. If you create a duplicate account, it will be closed and you will have to proceed with a MFA reset on your original account. 


Attempting to create a second account is in violation of our Terms of Service; Any violation of the Terms of Service may result in indefinite suspension of services and closure of a user's account.