Ask Zac
Security & SSO beginner 10 minutes

How to configure two-factor authentication for Zoom

Learn how to configure two-factor authentication for zoom. Step-by-step guide for Zoom administrators with prerequisites, detailed instructions, and troubleshooting tips.

Published February 26, 2026

Two-factor authentication (2FA) in Zoom adds an extra layer of security, requiring users to verify their identity through a second device, typically a smartphone. To configure 2FA for your Zoom account, enable it at the account level within the Zoom web portal and then customize the settings based on your organization’s needs, such as choosing the authentication methods available. This guide provides step-by-step instructions for Zoom administrators to set up and manage 2FA.

Prerequisites

  • Administrator access to a Zoom account.
  • Zoom Pro, Business, Education, or Enterprise account.
  • Familiarity with the Zoom web portal and account settings.
  • Users should have access to a device capable of receiving verification codes (smartphone with authenticator app, SMS access, etc.).

Enable Two-Factor Authentication at the Account Level

  1. Sign in to the Zoom web portal as an administrator.
  2. In the navigation menu, click Advanced, then Security.
  3. Under Security Options, find the Sign-in with Two-Factor Authentication option. If enabled, 2FA is already active at the account level. If disabled, continue to the next step.
  4. Click the toggle to enable Sign-in with Two-Factor Authentication.
  5. A confirmation window will appear. Select which users you want to apply the two-factor authentication for:
    • All users in your account: Enforces 2FA for all users associated with the account.
    • Users with specific roles: Allows you to enforce 2FA for users with specific roles. Check the roles to which you want to apply 2FA.
    • Users with specific domains: Allows you to enforce 2FA for users with email addresses from specific domains. Enter the domains (e.g., example.com) separated by commas.
  6. Click Save to apply the settings. Zoom will now require users matching the selected criteria to set up 2FA upon their next login.

Configure Two-Factor Authentication Methods

  1. Sign in to the Zoom web portal as an administrator.
  2. In the navigation menu, click Advanced, then Security.
  3. Under Security Options, locate the Choose Two-Factor Authentication Methods setting. If the setting is locked you will need to unlock it before proceeding.
  4. Click the checkbox to select the authentication methods you want to allow users to use:
    • Authenticator App: Users can use authenticator apps like Google Authenticator, Microsoft Authenticator, or Authy to generate verification codes.
    • SMS: Users can receive verification codes via SMS text message to their mobile phone.
    • Email: Users can receive verification codes via email to their registered Zoom email address.
  5. Click Save to apply the selected authentication methods.
  6. (Optional) Provide instructions to users on how to set up their preferred 2FA method. Zoom provides guidance during the initial login after 2FA is enabled.

Manage User Enrollment and Bypass Codes

While Zoom does not offer explicit bypass codes, you should ensure users have multiple recovery methods configured if available, or provide administrative support for account recovery.

  1. Regularly remind users to update their contact information in their Zoom profile, including phone number and recovery email address.
  2. If a user loses access to their 2FA device, guide them through the account recovery process provided by Zoom support. This typically involves verifying their identity through alternative means.
  3. If you have users who are unable to use 2FA due to specific circumstances, document these exceptions and consider alternative security measures.

Monitor 2FA Adoption

  1. Sign in to the Zoom web portal as an administrator.
  2. Navigate to Account Management > Reports.
  3. Look for reporting options related to user activity and security. While a direct 2FA adoption report may not be available, track user login activity and identify users who haven’t logged in recently, as they may need assistance with the 2FA setup.
  4. Communicate with users to encourage them to complete the 2FA setup process.

Common Issues

  • Users unable to log in after enabling 2FA: Ensure users have correctly set up their chosen 2FA method (Authenticator App, SMS, or Email). Verify that the time on their device is accurate, as incorrect time can cause issues with authenticator app codes.

  • Users not receiving SMS verification codes: Check that the user’s phone number is correctly entered in their Zoom profile. Some mobile carriers may block SMS messages from unknown numbers. Consider using an Authenticator App or Email as an alternative.

  • Authenticator app codes not working: Verify the time is accurate on both the user’s device and the Zoom server. Users can also try resyncing the time within the authenticator app’s settings.

  • Users losing access to their 2FA device: Guide users through the Zoom account recovery process. This may involve contacting Zoom support to verify their identity and regain access to their account.

  • 2FA conflicting with other security settings: Ensure 2FA settings don’t conflict with other security measures, such as SSO. If using SSO, ensure the SSO provider also supports 2FA for a consistent security experience.

Frequently Asked Questions

What happens if a user loses their 2FA device or can't access their authentication method?

As an administrator, you'll need to provide the user with a bypass code or temporarily disable 2FA for their account so they can regain access. Be sure to guide them to re-enroll a new 2FA method as soon as possible for continued account security.

Can I enforce two-factor authentication for all users in my Zoom account?

Yes, Zoom allows administrators to require all users within the account or specific groups to enable 2FA. This setting can be found in the Zoom web portal's 'Security' settings under 'Account Management'.

Which authentication methods are supported for Zoom's two-factor authentication?

Zoom supports authentication apps (like Google Authenticator, Authy, or Microsoft Authenticator), SMS messages, and phone calls as methods for two-factor authentication. Users can choose their preferred method during the setup process.

Are there any reporting tools to track 2FA adoption within my organization?

Yes, Zoom provides reports within the admin portal that allow you to monitor which users have enabled two-factor authentication and identify users who may need assistance with the setup process. These reports can help you track your organization's progress toward full 2FA adoption.

Need help configuring this?

Ask Zac can walk you through the setup step by step, or configure it for you automatically.

Try Ask Zac →