Background
As part of the Atlas of Living Australia’s (ALA) commitment to security, we are enabling two-factor authentication on our GitHub account.
Key information
- Action required: Outside collaborators will need to enable two-factor authentication (2FA) by 29 May 2025, if you have not already. Please note this is still required if you have enabled SMS/Text message only.
- Impact: Without 2FA enabled, you will not be able to access protected ALA resources.
- Date: 29 May 2025.
Configuring two-factor authentication using a TOTP app
A time-based one-time password (TOTP), such as via an authenticator app, is the simplest method for setting up 2FA. GitHub is app-agnostic when it comes to TOTP apps, so you have the freedom to choose any TOTP app you prefer.
Steps to set up 2FA using TOTP:
- Download a TOTP app of your choice to your phone or desktop.
- In the upper-right corner of any page on GitHub, click your profile photo, then click Settings.
- In the "Access" section of the sidebar, click Password and authentication.
- In the "Two-factor authentication" section of the page, click Enable two-factor authentication.
- Scan the QR code using your device, and then enter the code on GitHub.
- It is also important to save your recovery codes somewhere safe, in the event you lose your device. You can do this in the “Recovery codes” section below. We highly recommend you configure a two-factor recovery by following the guide Configuring two-factor authentication recovery methods also on GitHub.
Further information
For more information and other ways of configuring two-factor authentication, such as passkeys or GitHub Mobile, please refer to Configuring two-factor authentication on GitHub.