After you create a Plex account you have the option of enabling two-factor authentication for that account. It is highly recommended to enable two-factor authentication as it will prevent unauthorized users from logging into your account if your user ID and password become known by others.
With two-factor authentication enabled, you will be required to enter a 6-digit code when logging in with your Plex account. This code typically changes every minute so it is difficult to brute-force.
As mentioned, it is highly recommended to enable two-factor authentication, and you can use the steps outlined below.
How to enable two-factor-authentication
The process to enable two-factor authentication for your Plex account is simple. Use the following steps:
- Log into your Plex server as an administrator, and then click the Settings - the wrench - link in the upper-right corner of the Plex server page.
- Click the Account option from the menu on the left.
- From the Account Settings on the right, scroll down to the Two-Factor Authentication option and click the Edit link.
- Click the Enable button.
- In the Enable two-factor authentication dialog, enter your account password and then click the Continue button.
- Scan the QR code with your authenticator app on your mobile device. Once done, enter the code that is displayed in the app into the Verification Code field. You can also click the Sign out of all other servers and apps for extra security, which will require you to log back into all devices. Click the Continue button when done.
- From the next window, click the Copy to Clipboard button to copy the recovery codes. You should print them out and store them in a safe location. Once done, click the Done button.
At this point, two-factor authentication is now enabled for your account. You will now need to enter the code from your authenticator app whenever you log into your Plex account.
There are many different authenticator apps available for both iPhone and Android devices that you can use with Plex.
Some popular authenticator apps include the following:
When setting up two-factor authentication, most authenticator apps will allow you to use the device's camera to read the QR code that is displayed by Plex. This makes it quick and easy to add your Plex account to the authentication app.
The recovery codes
When you enable two-factor authentication you will be presented with 10 recovery codes that you should have stored somewhere safe.
A recovery code can be used in place of the code generated by your authenticator app. This is in case you lose or no longer have access to your device with the authenticator app.
You can regenerate new recovery codes if you lose your recovery codes. To generate new recovery codes you will need to enter your password and the verification code from your authenticator app.
Once done you will receive a new set of recovery codes, and all previous recovery codes will be invalid.
Either the code form the authenticator app or the recovery codes can be used to disable two-factor authentication for your Plex account.
Lost recovery codes
While you should try not to lose your recovery codes, it can happen. If you no longer have access to your authenticator app, and your recovery codes you can have Plex send you a single-use, time-limited verification code sent to the email address associated with your account.
Plex allows you to use your Apple, Facebook, or Google accounts to log into Plex. If you use one of these login methods you won't be prompted to provide your Plex two-factor authentication code.
If you have two-factor authentication setup for those accounts, you may be prompted to use two-factor authentication through those accounts instead.
Plex's two-factor authentication only applies if you use your email and password to log into your Plex account.