How to enable Google Authenticator on Kraken? (Account security)

Accessing the Security Settings

1. Log into your Kraken account using your registered email and password.

2. Navigate to the top-right corner of the dashboard and click on your profile icon.

3. Select Security from the dropdown menu to enter the security configuration panel.

4. Scroll down to the Two-Factor Authentication (2FA) section, where multiple 2FA options are listed.

5. Locate the Google Authenticator toggle and click Enable.

Setting Up Google Authenticator App

1. Download and install the official Google Authenticator app on your iOS or Android device if not already present.

2. Open the app and tap the '+' icon in the bottom-right corner.

3. Choose Scan a QR code and point your device’s camera at the QR code displayed on Kraken’s security page.

4. Wait for the app to register the new account—this typically appears as a six-digit rotating code under “Kraken”.

5. Enter the current six-digit code from the app into Kraken’s verification field and click Verify.

Backup and Recovery Options

1. Immediately after successful verification, Kraken displays a set of recovery codes — each is a unique 16-character alphanumeric string.

2. Copy each code and store them offline in a secure location such as an encrypted text file or printed sheet kept in a safe.

3. Do not save recovery codes in cloud storage, email, or unencrypted notes apps.

4. Kraken does not store these codes; losing them means permanent loss of 2FA access unless alternative verification methods like SMS or email backup are preconfigured.

5. Confirm that the Backup codes section shows “Used: 0 / 8” to indicate all codes remain valid and unused.

Disabling or Replacing Google Authenticator

1. Return to the Security page and locate the Google Authenticator section.

2. Click Disable — this action requires re-entering your Kraken password for confirmation.

3. After disabling, the associated TOTP secret is invalidated and any previously scanned QR code becomes useless.

4. To re-enable, repeat the full setup process including scanning a new QR code — Kraken generates a fresh secret upon each enable attempt.

5. If you lose access to your authenticator device but retain recovery codes, use one during login to bypass 2FA and immediately reconfigure a new authenticator instance.

Frequently Asked Questions

Q1. Can I use Google Authenticator on more than one device?Yes, but only if you scan the same QR code on each device before verifying. Once verified on the first device, the QR code expires. To add a second device, disable and re-enable Google Authenticator to generate a new QR code.

Q2. What happens if my phone is lost or damaged?You must use one of your saved recovery codes to log in. After logging in, navigate to Security settings and re-enable Google Authenticator with a new device. No recovery code reuse is allowed after first use.

Q3. Does Kraken support Authy or other TOTP apps?Yes. Any Time-Based One-Time Password (TOTP) compliant application works—including Authy, Microsoft Authenticator, and Aegis. The setup flow remains identical: scan the QR code and verify the generated code.

Q4. Why does Kraken require my password again when disabling Google Authenticator?This is a mandatory security checkpoint to prevent unauthorized deactivation. It ensures that only someone with full account credentials—not just access to the authenticator app—can remove the second layer of protection.