You should always enable two-factor verification for all your online accounts whenever it’s available. GoDaddy is no exception.
Two-factor verification simply means you have two steps to verify your identity using something you know (username/password), something you have (cell phone number or token), and/or something you are (biometrics).
For most companies, access to the internet registrar that hosts domain names should be labeled highly critical to secure. If attackers have access to your internet registrar, they can send all your company’s email to their server, send your website traffic to nefarious places, and well, pretty much create a lot of big problems.
You can increase your account's security by using two-factor verification, also known as Two Factor Authentication (2FA), MultiFactor Authentication (MFA), and two-step verification.
When you enable verification, every time you perform a high-risk task (like changing your username) GoDaddy will text you a code you must enter. You can also choose to require the code every time you log in to your account.
1) Log in to your GoDaddy account.
2) In the upper left corner of the page, click Account Settings, and then select Login & PIN.
3) In the 2-Step Verification area, click Add Verification.
4) Select the way you want the code sent to you and then click Continue:
a. Select SMS text messages if you want the code sent to you as a text.
b. Select Authenticator App to use an authentication app to create the code.
5) Select when you would like to use two-step verification and then click Continue:
6) If you selected SMS text messages, enter your mobile phone number and click Continue. Enter the code we text you, and then click Save.
7) If you selected Authenticator App, follow the instructions to download an app, scan the bar code, and enter the authentication code, and then click Continue.
8) Click Add Backup.
9) Repeat Steps 4 through 6 to select a backup authentication method.
Starting immediately, your account will require two-step verification based on the options you selected.
NOTE: Business owners and executives need to take extra precautions when it comes to two-factor verification.
1) Make sure company policy requires two-factor verification codes only go to company-owned cell phones. It’s not fun trying to get a former employee to send you login codes going to their personal cell phones.
2) Always document your two-factor verification settings in a secure location in the event of employee turnover.