If Two-Factor Authentication (2FA) is enabled for your account, the login flow requires you to verify your identity using a mobile authenticator app (such as Google Authenticator, Authy, or Bitwarden) after entering your correct email and password.
Getting here
- Navigate to the login page and enter your correct Email or Username and Password
- Click Sign In
- If 2FA is active, you will be redirected automatically to
/2fa
Fields and options reference
Step-by-step
- Open your authenticator app on your mobile device
- Locate the entry for OwnPay (which maps to your login email)
- Copy or read the current active 6-digit numeric code
- Enter the code in the Verification Code field
- Click Verify
- Upon successful verification, you will be logged in and redirected to the Dashboard
Configuration guide
- Clock Drift Tolerance: The system allows up to 60 seconds (2 time slices) of clock drift between your mobile device and the server
- Replay Protection: A code cannot be used more than once
- Rate Limiting: Entering too many incorrect codes will lock you out for 5 minutes
Best practices
- Synchronize the time on your mobile device to ensure the codes match the server’s time precisely
- Click Cancel & Logout if you are logging in from a public computer and cannot complete the 2FA step
- Do not share your 2FA secret key or authenticator app entries with anyone
You must submit the code within its 30-second validity window. If the timer expires and shows a new code, type the new code instead.
Common mistakes and troubleshooting
Related pages
- Login - The initial credentials screen
- My Account - Where to set up and enable/disable 2FA