How to configure two-step verification on OKX mobile app?

Accessing Security Settings

1. Launch the OKX mobile application and log in using your registered credentials.

2. Tap the profile icon located in the top-right corner of the home screen.

3. Select “Security Center” from the dropdown menu or side navigation panel.

4. Scroll down to locate the “Two-Step Verification” section under Account Security.

5. Tap on “Enable” to begin the activation process.

Binding Authentication Method

1. Choose “OKX Authenticator” as the preferred verification method.

2. The app displays a QR code on-screen; open the OKX Authenticator app on the same device or another trusted device.

3. In OKX Authenticator, tap “Add Account” and select “Scan QR Code”.

4. Align the camera with the QR code shown in the OKX app until scanning completes successfully.

5. Enter the six-digit dynamic code generated by OKX Authenticator into the OKX app to confirm binding.

Verifying Setup Completion

1. After entering the code, OKX displays a success message confirming two-step verification is active.

2. A backup recovery key appears—copy it immediately and store it offline in a secure location.

3. The interface shows “Enabled” next to Two-Step Verification status with a green checkmark icon.

4. Attempting to log out and back in triggers a prompt requesting the current authenticator code.

5. Each subsequent login now requires both password and time-based one-time password (TOTP).

Managing Trusted Devices

1. Within Security Center, navigate to “Trusted Devices” to view all registered devices.

2. Each entry shows device model, operating system version, and last used timestamp.

3. Tap any device to revoke access instantly if compromised or no longer in use.

4. Revoking triggers an email notification to the associated account address.

5. New device logins automatically appear in this list after successful two-step authentication.

Recovery Options Configuration

1. Under Two-Step Verification settings, select “Recovery Options” to expand alternatives.

2. Add at least one verified email address capable of receiving TOTP fallback codes.

3. Input a valid SMS-capable phone number for emergency SMS-based verification.

4. Enable “Backup Codes” generation and download the PDF containing ten single-use codes.

5. All recovery channels are encrypted end-to-end and never stored on OKX servers in plaintext.

Frequently Asked Questions

Q: Can I use Google Authenticator instead of OKX Authenticator?Yes. During setup, select “Other Authenticator Apps” and scan the displayed QR code with Google Authenticator or any RFC 6238-compliant TOTP generator.

Q: What happens if I lose my phone with OKX Authenticator installed?You can regain access using backup codes, verified email, or SMS—if previously configured—or contact OKX support with identity verification documents.

Q: Does enabling two-step verification affect API key usage?No. API keys operate independently unless explicitly restricted via IP whitelisting or permission scope adjustments in API Management.

Q: Is there a delay before two-step verification becomes mandatory for all login attempts?Activation is immediate. Every login attempt after enabling requires both credentials and the current TOTP code without exception.