Help
Hosts
Help centerTopicsMy Holidu Account

How to Set Up Two-Factor Authentication (2FA) on Your Holidu Account

To keep your account and data secure, Holidu uses Two-Factor Authentication (2FA) for all hosts that do not use social logins (where 2FA is also offered, for example by Gmail). This extra layer of security protects your account even if someone else knows your password. 2FA is mandatory for all hosts with published properties.

What is 2FA?

Two-Factor Authentication requires two things to log in:

  1. First factor: Your email and password
  2. Second factor: A one-time verification code, sent via one of the following methods:
    • SMS (recommended)
    • Authenticator app (e.g., Google Authenticator, Authy)
    • Email (no longer supported for new hosts)

You can set up multiple methods for backup access. However, you can only use one instance of each method—for example, only one phone number, one email address, and one authenticator app can be registered at a time.

Where to Set Up 2FA

  1. Log in to your Holidu Host Account. You may be prompted to set up 2FA immediately after login. If not, continue to step 2.
  2. Go to: Holidu Logo > Security
  3. Click Configure next to the authentication method(s) you want to activate.
Screenshot showing Holidu Security settings page where users can configure two-factor authentication methods on Holidu.

Choose Your 2FA Method

Method 1: SMS (Mobile Phone) — Recommended

SMS is the fastest and easiest method to set up two-factor authentication on your Holidu account.

  1. Select SMS from the list.
Screenshot showing SMS authentication method selection on Holidu security settings page.
  1. Enter the phone number you want to use and click Get SMS Code.
Screenshot showing SMS phone number entry field on Holidu two-factor authentication setup.
  1. Enter the 6-digit code you receive and click Verify.
Screenshot showing SMS verification code entry field on Holidu authentication setup.
  1. You'll see a confirmation message once the setup is complete. Congratulations, your account and your data are now secured!

Method 2: Email (No Longer Available for New Hosts)

Email authentication is no longer supported for new Holidu host accounts. Existing hosts using this method can continue to do so, but we recommend switching to SMS or an authenticator app for enhanced security.

  1. Choose Email authentication from the list of methods.
Screenshot showing Email authentication method selection on Holidu security settings page.
  1. The system will send a verification code to your registered Holidu email address.
  2. Check your inbox, enter the code, and click Submit code.
Screenshot showing email verification code entry field on Holidu two-factor authentication setup.
  1. You'll see a confirmation message once the setup is complete. Congratulations, your account and your data are now secured!

Method 3: Authenticator App

An authenticator app is a small program you install on your smartphone or tablet. It generates a new 6-digit security code every 30 seconds that only you can see. Unlike text messages or emails, the app works even without internet or mobile signal, because the codes are created directly on your device.

  1. Download an app like Google Authenticator (Android | Apple) or Authy (Android | Apple).
  2. Select Authenticator App from the list.
Screenshot showing Authenticator App method selection on Holidu security settings page.
  1. Scan the QR code displayed on your screen (or use a manual code if scanning doesn't work).
Screenshot showing QR code for authenticator app setup on Holidu two-factor authentication page.
  1. Enter the 6-digit code generated by the app, give the device a name (e.g., "My mobile phone"), and click Submit.
  2. You'll see a confirmation message once setup is complete. Congratulations, your account and your data are now secured!
  3. Authenticator apps generate codes locally, so they work without internet or mobile signal.

After Setup

From now on, logging in requires:

  1. Entering your password
  2. Entering the 6-digit code from your chosen 2FA method

You can manage your 2FA settings at any time via the Security section in your Holidu app.

Tips for Success

  • We recommend starting with SMS, as it's the fastest and easiest method.
  • Enable at least two different methods in case you lose access to one.
  • Remember: Only one instance of each method can be used (one email, one phone, one authenticator app).
  • Save your backup codes in a safe place if your authentication app provides them.
  • Keep your phone and email information up to date in your Holidu account.

Frequently Asked Questions (FAQ)

Why do I need to set up 2FA?

Two-factor authentication protects your account from unauthorized access, especially if your password is ever compromised. It adds an essential security layer that makes it significantly harder for someone to gain unauthorized access to your Holidu account and your property listings.

I do not see an option to set up 2FA in my account. Why?

Two-Factor Authentication is only available if you use a combination of email and password to login. If you are using a login method like Facebook or Google, you are already secure, since they also offer Two-Factor Authentication through their own systems.

What if I lose access to my phone or email?

You can use a backup method or contact Holidu support to recover access. We recommend setting up a secondary verification method to avoid incidents. If you have both SMS and an authenticator app enabled, you can use the other method to regain access.

Can I skip setting up 2FA?

Only temporarily. Two-factor authentication becomes mandatory once you publish a property on Holidu. This ensures your account and your guests' data remain protected.

How long does setup take?

Setup typically takes less than a minute in most cases. The quickest method is SMS, which requires only a few steps to verify your phone number.

Can I use more than one method?

Yes! You can activate more than one method for backup purposes. This is highly recommended. For example, you could set up both SMS and an authenticator app, so you have a backup option if one method becomes unavailable.

What if I don't receive the code?

Check the following depending on your method:

  • Email: Check your spam or junk folders
  • SMS: Check your mobile signal strength and confirm your phone number is correct
  • Authenticator App: Ensure your device's time is synced correctly

If you still don't receive the code after checking these items, contact Holidu support for assistance.

Do collaborators need to activate 2FA too?

Yes, if they have access to published properties. All users with administrative access to active properties must set up two-factor authentication to maintain account security.

Can I change my 2FA method later?

Yes, you can modify your 2FA settings at any time. Go to Settings > Security to update, remove, or add new authentication methods to your account.

Is there a recovery code if I lose access to all my 2FA methods?

Some authenticator apps provide backup codes during setup. If you have these, store them in a safe location. If you've lost access to all methods, contact Holidu support immediately. They can help you regain access to your account through account verification.

Can I use the same authenticator app for multiple accounts?

Yes, most authenticator apps like Google Authenticator and Authy can store codes for multiple accounts. You can add your Holidu account alongside other services within the same app.

Did this article answer your question?

Do you want to contact us?

We’re here to help. You can contact us directly if you need assistance or have questions.

Contact us