Sign-in triggers a PIN code message
A user signs into their account with their username and password. Based on your application’s logic, this will trigger Telnyx to send a PIN code via voice or SMS to the phone number associated with that user’s account.
Code is received and entered correctly
The user receives the code and enters it into your application’s PIN code input field.
Your application verifies the PIN code to confirm that the user’s phone number is linked to the account. Your application will then give the user full access.
- Get started with Verify
VerifySetup and enable multichannel two-factor authentication at scale through text, call, or WhatsApp, in just two easy steps–the API handles everything from authentication code generation to delivery and verification.
- Authenticate users via SMS
SMS APIDeliver tokens at scale with reliable messaging built into your application.
- Authenticate users via Voice
Voice APILeverage crystal clear calls along our own private backbone.
- Authenticate users via WhatsApp
WhatsApp Business APIDeliver 2FA codes to global users using the world’s most popular messaging app.
- Explore docs
Build with an authentication APIConfiguration guides to quickly add an authentication service to your app using SMS, Voice, Flash Call and/or WhatsApp.
- Read article
How secure is two-factor authentication?If you're worried about protecting your sensitive and personal information, learn how two-factor authentication can help.
- Read article
What is two-factor authentication?We dive into how two-factor authentication works to add an extra layer of security, the different types of 2FA and more.
Frequently Asked Questions about Two-Factor Authentication
Authentication is a means of verifying one’s identity, and two-factor authentication (2FA) is a method of establishing access to an online destination, by requiring users to provide two different types of information. One common mode of single factor authentication is the username password pair. With 2FA, users need to both provide a password and prove your identity some other way to gain access. A common 2FA method is to send a time expiring one time password, sent to a mobile device via SMS in addition to username and password.
There are a few ways to build 2FA into your application. You can choose to use a two-factor authentication API–like our Verify API–that will do all the work of generating, sending, and validating the 2FA codes. If you prefer to create and validate the tokens yourself, you can use our SMS or Voice API to simply deliver them to your customers.
According to a 2019 report from Microsoft, 2FA blocks 99.9% of automated attacks.
The Verify API is our two-factor authentication API. It gives you the ability to generate, deliver and quickly authenticate codes for users across the world, all with just one API for any channel (Voice, SMS, WhatsApp or Flash Call).