Instructions for setting up a password manager and 2FA for account security

Created by Landfish

This document describes the basic steps to setting up a password manager, generating secure passwords, and setting up 2FA on your accounts.

1. Install a Password Manager

Install either 1Password or Lastpass to use as a password manager. Choose a secure password for this account. The first link describes how to make a secure password you can memorize. Create one, write it down and keep it in a secure location. It’s super important that you don’t lose this, as there will be no way to get your passwords if you lose it. If you already have a password manager with a secure password, you can skip this step.

• How to create a secure password for your password manager:

  • https://blog.lastpass.com/2013/04/how-to-create-secure-master-password.html/

• 1Password

  • https://1password.com/

  • https://lifehacker.com/the-beginners-guide-to-1password-1794464866

• Lastpass

  • https://www.lastpass.com/

  • https://lifehacker.com/the-beginners-guide-to-setting-up-lastpass-1785424440

• Install the browser extensions for these password managers for your preferred browser

2. Use a secure, unique password for every account

Use your password manager to generate new secure passwords for each account, unless you’ve already created unique, secure passwords for these accounts. If you have, then simply store them in your password manager.

3. Configure two-factor authentication (2FA) for every account

Enabling two-factor authentication greatly increases the security of your account. I recommend using Google Authenticator and/or security keys (yubikeys). Authenticator apps are much more secure than SMS (text) second factor, but if SMS is all that will work, you can use that method. Below you will find links to the Apps to install and the accounts to secure, along with tutorials to follow if you get stuck.

If you’re using yubikeys, there are instructions for your google account, but rest should be pretty similar.

Authenticator Apps:

• Android - Google Authenticator:

  • https://play.google.com/store/apps/details?id=com.google.android.apps.authenticator2&hl=en

• Apple - Google Authenticator:

  • https://itunes.apple.com/us/app/google-authenticator/id388497605?mt=8

Accounts to secure:

• Google

  • https://myaccount.google.com/security

  • https://www.google.com/landing/2step/

If using yubikeys:

• Setting up yubikeys for Gmail 2FA

• Facebook

  • https://www.facebook.com/settings?tab=security

  • https://www.eff.org/deeplinks/2016/12/how-enable-two-factor-authentication-facebook

• Twitter

  • https://twitter.com/settings/account/login_verification

  • https://www.turnon2fa.com/tutorials/how-to-turn-on-2fa-for-twitter/ or

  • https://help.twitter.com/en/managing-your-account/two-factor-authentication

• Telegram

  • https://telegram-store.com/blog/two-step-verification-in-telegram/

• Others

  • I didn’t have time to find instructions for every account, but google is your friend :)