Skip to main content

How to enable Two-Factor Authentication (2FA) in Wati

Updated over a week ago

Summary

Keeping your account secure is more important than ever. Two-factor authentication (2FA) adds an extra layer of protection by requiring a second verification step in addition to your password. This makes it much harder for unauthorized users to access your account.

Without 2FA, your account is more vulnerable to unauthorized access. This can lead to suspicious activities, such as unknown users being added or templates being created without your knowledge. Turning on 2FA helps prevent these risks and is an essential step to protect your account and sensitive information.

Enabling 2FA in Wati only takes a few minutes and this guide will help you set it up.

Instructions

Why use 2FA?

  • Stronger security: Even if someone guesses your password, they can’t access your account without the second verification step.

  • Peace of mind: Protect sensitive business data and customer interactions.

How to enable 2FA in Wati

Follow these steps to enable two-factor authentication (2FA):

1. Go to your Account Details page

  • Log in to your Wati account.

  • Navigate to the Account Details page (usually found in your profile or settings menu).

2. Enable 2FA

  • On the Account Details page, find the 2FA option.

  • Toggle it to Enable.

3. Verify your email

  • A verification code will be sent to your registered email address.

  • Can’t find the email? Check your spam or junk folder.

4. Set up an Authenticator app

  • Download a free authenticator app like Google Authenticator or Authy (available on iOS and Android).

  • Open the app and either:

    • Scan the QR code displayed on Wati’s 2FA setup page.

    • Manually enter the code provided by Wati.

5. You’re done!

  • 2FA is now active for all users on your Wati account.

  • Going forward, you’ll need your password and the authenticator app code to log into Wati.

Important Updates

Email support

We now support receiving 2FA (Two-Factor Authentication) codes via email, in addition to the authenticator app option we previously offered.

Added security

To help protect your account, we’ve introduced an additional security layer for users who haven’t enabled 2FA.

If you log in from a new device or IP address, Wati will now ask you to verify your identity using a one-time password (OTP) which will be sent to your registered email.

Here’s how it works:

  • Wati securely saves your last 10 IP addresses.

  • If you log in from a known IP, OTP verification won’t be required.

This feature helps prevent unauthorised access and keeps your account secure, even without 2FA enabled.

Note: If you lose access to your Wati’s 2FA code, you can reset your password to set up 2FA again.

Troubleshooting Tips

  • Email code not arriving?

    • Double-check your spam/junk folder.

    • Ensure your email address is correctly listed in Account Details.

  • QR code not scanning?

    • Ensure your phone’s camera is focused on the code.

    • Use manual entry as a backup.

Frequently Asked Questions (FAQs)

General questions

1. What is two-factor authentication (2FA) in Wati?

2FA is an added security step that requires both your password and a second verification code to log in, helping protect your account from unauthorized access.

2. Why should I enable 2FA?

It strengthens account security, protects sensitive business and customer data, and reduces the risk of suspicious activities such as unknown users or unauthorized changes.

3. What happens if I don’t enable 2FA?

Your account is more vulnerable to unauthorized access, which may lead to unexpected activity or changes without your knowledge.

Setup and activation

4. How do I enable 2FA in Wati?

Log in to your account, go to the Account Details page, turn on the 2FA toggle, verify your email with the code sent to you, and complete setup using an authenticator app.

5. Which apps can I use for authentication?

You can use any standard authenticator app, such as Google Authenticator or Authy, available on iOS and Android.

6. Can I receive 2FA codes by email instead of an authenticator app?

Yes, Wati supports receiving 2FA codes through your registered email in addition to using an authenticator app.

7. Will 2FA apply to all users in my account?

Yes, once enabled, 2FA is active for all users, and everyone will need both their password and a verification code to log in.

Security and troubleshooting

8. What happens if I log in from a new device or IP address without 2FA enabled?

Wati may ask you to verify your identity using a one-time password (OTP) sent to your registered email to help protect your account.

9. What should I do if I don’t receive the email code or can’t scan the QR code?

Check your spam or junk folder and confirm your email address is correct, and if the QR code doesn’t scan, use the manual code entry option instead.

Related Articles
How to top up or add credits in Wati
Migrating your WhatsApp Business Account from another BSP to Wati
How to send OTP on WhatsApp using Wati API
How to find your API endpoint URL and bearer token in Wati
Security best practices to safeguard your Wati account
Did this answer your question?