2FA in Nextcloud

Our Nextcloud instance now supports optional two-factor authentication via TOTP based tokens.

Two-factor authentication (2FA) is a way to protect your Nextcloud account against unauthorized access. It works by requiring two different ‘proofs’ of your identity. For example, something you know (like a password) and something you have (like a key). Typically, the first factor is a password like you already have and the second can be a code you generate on your phone or another device (something you have).

Time-based One-time Password (TOTP) is a common standard of 2FA supported by many authenticator clients. It uses numeric passwords which are generated based on a unique secret, and the current time.

Follow the given steps to setup 2FA in your Nextcloud account :

1. Login to your account via the website.
2. Navigate to the Settings page, and then the Security panel.
3. Select the "Enable TOTP" option.
4. Scan the generated QR-code with your authenticator client.
5. Enter the verification code.

After this procedure, you will be able to login to your Nextcloud account ONLY with 2FA, till you disable it. Please make sure to keep your authentication client safe! Also ensure that you generate and safeguard a backup code for your account!