How do I set up 2FA?During account registration, you’ll be given the option of setting up 2FA via third-party authenticator app or SMS text. Check out the video below to learn how to get set up, and keep reading for more information.
<iframe></iframe>
To set up 2FA via app, click Continue with authenticator app and follow the onscreen instructions. You’ll need to (install and) open the app of your choice, scan the QR code, then enter the 6-digit code provided by the app into Carta and click to Continue.
- If you’re having trouble scanning the QR, click the link beneath it to view a setup key that can be entered into the app instead.
- If you choose to set up two-factor authentication via SMS text message, select your country code, enter your mobile number, and click Send code. Enter the six-digit code from the text you receive on your mobile device and click Continue.
If text messaging is not available (or you’ve provided a landline number), you can click Call phone to receive a call with the code. You’ll see a yellow call indicator on the right. Be sure to answer the call and listen for the code, then enter it on your screen and click Continue.
- Once 2FA has been successfully configured, we’ll provide a list of backup codes to use in the event that you lose access to your authentication device. We recommend downloading them and keeping them in a safe place in order to preserve access to your account without going through the entire two-factor authentication reset process.
- You’ll see a confirmation and be directed to your Carta account. You can manage these settings at any time on your Security page.
Can I add more than one phone number for SMS authentication?
Carta allows users to link multiple phone numbers for SMS-based authentication, in addition to a TOTP method, providing you with even more ways to access your account and offering greater flexibility for shared accounts.To add another authentication method, click on your name in the top right and select Security. Scroll down to the Two-Factor Authentication section and click + Add authenticator app (if currently set up via SMS only), or + Add SMS device to add additional mobile numbers for SMS authentication.
How do I change my authentication method?To change the two-factor authentication method you use to access Carta, start by adding the new 2FA device, then delete the outdated method. Keep reading for more information.
- After logging into Carta, click your name in the top right and select Security.
- Scroll down to the Two-Factor Authentication section and click + Add authenticator app (if currently set up via SMS only) or + Add SMS Device, and follow the instructions in the section above.
- Once the device has been added to your account, you’ll receive an email confirmation similar to the one below.
- After enabling the new 2FA device, click the three dots to the right of the device you’d like to remove and select Delete. Enter your Carta password and click Delete device to confirm.
What is two-factor authentication and why should I use it?Two-factor authentication (2FA) adds an extra layer of security to your online accounts by requiring two forms of authentication to log in. Typically, you first enter your username and password, and then you verify your identity with a second factor, such as a code generated by an authenticator app or sent via SMS or email.2FA protects your data if someone steals your laptop or phone (because they can't access your accounts without the additional authentication method), and helps defend against cyberattacks. Additionally, 2FA provides immediate alerts if someone tries to access your account, allowing you to block unauthorized attempts.
How does setting up 2FA affect my privacy?The information you provide on Carta is only used for the purposes stated. It will not be used for marketing or anything you do not consent to, as already outlined in our Privacy Policy. Please note that when you install Google Authenticator, Authy, or another 2FA service, you are also agreeing to their terms and conditions, which can be found on their websites. Please also note that if you opt for document verification as your method for reset, the verification is done by a third-party, Socure. Socure uses a transient system and your information is not recorded. We have included a link to Socure's Privacy Policy.If you opt for manual verification, this verification is done by Carta’s internal team.
What happens if I lose access to my 2FA device?If you lose access to your authentication device or are having trouble receiving the 6-digit code, first try to use your backup codes to log in. Backup codes are provided when you first set up 2FA, and if you downloaded them, the file is likely saved on your local drive as carta-backup-codes.txt.If you don’t have your backup codes handy, follow these steps to request a 2FA reset.
What if I use a shared account?Your account must accurately reflect your name and your email, both for account confirmation purposes, and to ensure you can easily regain access to your account during the verification process. Carta does not recommend shared accounts for this reason.See Section 2.2 in our MSA.