{"id":5221,"date":"2019-07-09T14:25:10","date_gmt":"2019-07-09T11:25:10","guid":{"rendered":"https:\/\/www.protectimus.com\/blog\/?p=5221"},"modified":"2025-08-08T22:51:35","modified_gmt":"2025-08-08T19:51:35","slug":"paypal-two-factor-authentication","status":"publish","type":"post","link":"https:\/\/www.protectimus.com\/blog\/paypal-two-factor-authentication\/","title":{"rendered":"PayPal Two-Factor Authentication with Hardware Security Key"},"content":{"rendered":"\n

PayPal two-factor authentication became available to users in far 2007. Everybody wishing to protect their PayPal login could order a $5 security token<\/a> directly from their account.<\/p>\n\n\n\n

Unfortunately, later the company discontinued the use of its own hardware tokens in favor of SMS-based authentication, decreasing PayPal security considerably. But the situation with PayPal two-factor authentication is changing once again, for the better now:<\/p>\n\n\n\n

    \n
  1. Since 2018, you can use MFA applications to log into PayPal (Google Authenticator, Protectimus Smart, etc.)<\/li>\n\n\n\n
  2. As MFA apps are available, it’s also possible to use hardware security keys again. There’s just one catch \u2014 only programmable tokens will fit for PayPal two-factor authentication.<\/li>\n<\/ol>\n\n\n\n

    <\/p>\n\n\n\n

    Buy hardware security key for PayPal<\/a><\/div>\n\n\n\n

    <\/p>\n\n\n\n

    How do I enable PayPal 2FA?<\/strong><\/h2>\n\n\n\n

    Step 1<\/h3>\n\n\n\n

    To activate two-factor authentication in PayPal sign in your account and navigate to the settings menu.<\/p>\n\n\n\n

    \"How<\/figure><\/div>\n\n\n\n

    <\/p>\n\n\n\n

    Step 2<\/h3>\n\n\n\n

    Choose the Security tab.<\/p>\n\n\n\n

    \"PayPal<\/figure><\/div>\n\n\n\n

    <\/p>\n\n\n\n

    Step 3<\/h3>\n\n\n\n

    In the “2-step verification” section, click Set Up.<\/p>\n\n\n

    \n
    \"PayPal<\/figure>\n<\/div>\n\n\n

    <\/p>\n\n\n\n

    Step 4<\/h3>\n\n\n\n

    At this point, you’ll need to choose one of the available two-factor authentication methods: SMS or MFA application. Programmable hardware tokens can be linked with PayPal as MFA applications.<\/p>\n\n\n\n

      \n
    • SMS.<\/strong> When you choose SMS authentication, you’ll need to provide a real phone number. You’ll instantly receive a message containing a PayPal security code to confirm the number is correct. We don’t recommend using SMS if you’re able to set up a 2FA app instead or order a hardware token for use with PayPal.<\/li>\n\n\n\n
    • 2FA app. <\/strong>Choose this option if you want to link an in-app PayPal authenticator, or the Protectimus Slim NFC<\/a> – programmable PayPal security key.<\/li>\n<\/ul>\n\n\n\n
      \"Choose<\/figure><\/div>\n\n\n\n

      <\/p>\n\n\n\n

      Step 5<\/h3>\n\n\n\n
        \n
      • If you haven’t already installed a one-time password generator app, install a free app Protectimus SMART OTP<\/a> or any other 2-factor authentication app.<\/li>\n\n\n\n
      • If you want to use a hardware security token, you’ll need to already have one at this point. It must be a programmable TOTP<\/a> token – Protectimus Slim NFC<\/a> or a similar one. The process to link a programmable hardware token to PayPal is no different than the process of linking a two-factor authentication app. To set up the token, you’ll need an Android smartphone that supports NFC.<\/li>\n<\/ul>\n\n\n\n

        At this point, you’ll see a QR code containing the secret key. Scan this secret key using a two-factor authentication app, or using the Protectimus TOTP Burner<\/a> app if you’re linking a hardware PayPal security key Protectimus Slim NFC. If you aren’t able to scan the QR code, you can input the secret key manually.<\/p>\n\n\n\n

        \"PayPal<\/figure><\/div>\n\n\n\n

        <\/p>\n\n\n\n

        <\/p>\n\n\n\n

        You’ll find detailed instructions for programming the secret key into the Protectimus Slim NFC token here<\/a>.<\/p>\n\n\n\n