What is Two-Factor Authentication?

Two-Factor Authentication (2FA) is an additional security layer to email verification and your account password. With 2FA enabled, you will have to provide the 2FA code when performing certain actions on the Crypto.com NFT platform.

How does TOTP work?

Crypto.com NFT uses a Time-based One-time Password (TOTP) for Two-Factor Authentication, it involves generating a temporary, unique one-time 6-digit code* that is only valid for 30 seconds. You will need to enter this code to perform actions that affect your assets or personal information on the platform.

*Please keep in mind that the code should consist of numbers only.

How do I set up 2FA on my Crypto.com NFT account?

2FA setup flow

  1. Within the “Settings” page, click “Set Up 2FA” under “Security”

  2. Scan the QR code with an authenticator app*, or copy the code to the app to add it manually. Then click “Proceed to Verify”

    • Users will need to install authenticator apps like Google Authenticator or Authy to set up 2FA

  3. Input the verification code sent to your email inbox and displayed in your authenticator app. Click “Submit”

  4. After setup is complete, you will see a confirmation message

Please note that the 2FA set up in your Crypto.com NFT account is independent of the one set up for your accounts across other Crypto.com ecosystem products.

Which actions are secured by 2FA?

After 2FA has been enabled, the following actions performed on the Crypto.com NFT platform will require users to enter the 2FA code:

  • List NFT (2FA can be turned off optionally)

  • Accept Bids & Offers (2FA can be turned off optionally)

  • Enable 2FA

  • Request Payout

  • Login

  • Reset Password

  • Withdraw NFT

Please note that withdrawing NFTs requires a mandatory 2FA setup. Upon enabling 2FA, users will face a 24-hour withdrawal lock for all of the NFTs in their accounts.

How to reset my 2FA?

If you lose your device or don't have access to your authenticator app, you will need to contact our customer support.

Once your 2FA is revoked, the system will invalidate your previous authentication key. The 2FA section in the “Security” tab in “Settings” will return to its non-setup state, where you can click “Set Up 2FA” to set up 2FA again.

Did this answer your question?