Free Domain Reputation Webinar Learn how your sending practices and domain reputation impact deliverability.

How do I use two factor authentication (2FA)?

Two factor authentication (2FA) adds an additional step to logging in for increased security. You can use either SMS text messages to your phone number or an authentication app we support, to retrieve a code you will need for logging in to your Postmark account. 2FA can be enabled by all user types and is recommended for security. Verifying a phone number is a required part of the setup process to ensure you have a backup method of getting logged in if you lose access to a device using app authentication.


Log into your Postmark account and click on your name in the top right corner to open your user settings. In the Security area click Turn on next to Two-Factor authentication. Enter in your password to confirm.
Enter in your phone number and click Send code to receive a code. Enter in that code and click Verify code.

Once you have your phone number set up, you can proceed so set up app authentication, if you prefer to use an app for 2FA.

After the setup process is complete, you will see a confirmation page that includes your backup codes. It is very important to save these backup codes in case you need them in the future to log into your account.

Make App authentication the primary method

To set app authentication as your primary method, click Manage next to Two-factor authentication in the security section of your profile. Then click Set as primary for App authentication.

We support Google Authenticator, Authy and 1Password.

Logging In

Once 2FA has been enabled, the next time you log in you will need to enter in a code after using your username and password to log in.

Retrieving Backup Codes

If you did not save your backup codes when completing the 2FA setup, you can still retrieve them. Open your user settings and in the Security area, click Manage next to Two-factor authentication and then click Backup codes. You will then see your backup codes and have the option to save or print them.

Viewing Users’ 2FA Settings

If you are the account owner, you can see who has 2FA enabled in your Users page:
You can use this area to quickly see who has enabled or disabled 2FA for enforcing an account wide 2FA policy.


  • Save your backup codes
  • We don't provide an option for using a backup number with SMS authentication. This means that if you change your phone number, you will need to use a backup code to get logged in and change your 2FA phone number.
  • If you are traveling and unable to receive SMS messages, use a backup code to get logged in.
  • If you are using app authentication and have a new phone without the app installed, you will need to use a backup code or an SMS text to get logged in.

What happens if I get locked out of my account?

In the event you cannot use the authentication method you enabled for 2FA to get access to your account, you will need to use a backup code or the backup method of SMS. This is why it is very important that you save your backup codes for situations where you need them to get access to your account. Contact us at if you do not have a backup code and cannot complete the 2FA step using SMS or an authentication app.
Last updated February 14th, 2019

Still need some help?

Our customer success team has your back!