How Apple 2-Factor Authentication Works

How Apple 2-Factor Authentication Works

Before You Begin

Make sure to have each of the following ready- you'll be needing them as you proceed through the steps.
  1. Apple Device
    1. Personal Apple ID (Email Address currently on the Apple device)
    2. Password for this Apple ID
  2. Apple ID used for Developer Account
    1. Password for Apple ID used for Developer Account
    2. Security Questions used for Apple ID
  3. Device of Team Agent (Apple or Android)

What Is Two-Factor Authentication?

In order for Gallus Golf to submit an app on your behalf, you must first create an Apple Developer Account. Part of the process of setting an Apple Developer Account up is verifying your identity- enter Two-Factor Authentication.

With Two-Factor Authentication, your account can only be accessed on devices you trust, like your iPhone, iPad, or Mac. When you want to sign in to a new device for the first time, you'll need to provide two pieces of information—your password and the six-digit verification code that's automatically displayed on your trusted devices. By entering the code, you're verifying that you trust the new device. For example, if you have an iPhone and are signing into your account for the first time on a newly purchased Mac, you'll be prompted to enter your password and the verification code that's automatically displayed on your iPhone.

Because your password alone is no longer enough to access your account, two-factor authentication dramatically improves the security of your Apple ID and all the personal information you store with Apple.

Once signed in, you won’t be asked for a verification code on that device again unless you sign out completely, erase the device, or need to change your password for security reasons. When you sign in on the web, you can choose to trust your browser, so you won’t be asked for a verification code the next time you sign in from that computer.

Setting Up Two-Factor Authentication

There are six steps to set up Two-Factor Authentication. Let's take them one at a time:

Step 1: Log Out of Current Apple ID on Apple Device

If you use iOS 10.3 or later:

  1. Go to Setting > {your name]
  2. Scroll down and tap Sign Out

  3. Enter your Apple ID password and tap Turn Off.
  4. SAVE ALL the data that you want to keep a copy of on your device. 
  5. Tap Sign Out.
  6. Tap Sign Out again to confirm that you want to sign out of iCloud.

If you use iOS 10.2 or earlier:

  1. Go to Settings > iCloud.
  2. Scroll down and tap Sign Out.
  3. Tap Sign Out.
  4. Tap Delete from My iPhone.
  5. Tap Keep for for data on your iOS device, such as iCloud calendars, Safari data, reminders, and contacts. 
  6. Enter your Apple ID password, and tap Turn Off.

Step 2: Log in to Apple ID Used for Developer Account

When you use iOS 10.3 or later, you sign in to iCloud, the iTunes & App Store, iMessage, FaceTime, and your other Apple services in one place.

  1. Go to Settings.
  2. Tap Sign in to your [device].
  3. Enter your Apple ID and password. (Apple ID used for the Developer Account)

Step 3: Set Up 2-Factor Authentication

  1. Turn on two-factor authentication in Settings

    1. If you're using iOS 10.3 or later:

      1. Go to Settings > [your name] > Password & Security. 
      2. Tap Turn On Two-Factor Authentication.
      3. Tap Continue.

      If you're using iOS 10.2 or earlier:

      1. Go to Settings > iCloud. 
      2. Tap your Apple ID > Password & Security. 
      3. Tap Turn On Two-Factor Authentication.
      4. Tap Continue.
      You might be asked to answer your Apple ID security questions.

  2. Enter and verify your trusted phone number (Team Agents Cell Phone Number)

    1. Enter the phone number where you want to receive verification codes when you sign in. You can choose to receive the codes by text message or automated phone call.

      When you tap Next, Apple sends a verification code to the phone number you provided.

    2. Enter the verification code to verify your phone number and turn on two-factor authentication:


Step 4: Sign Out of The Developer Account Apple ID

  1.  DO NOT save a copy of your data on your personal phone if Apple ID is different

Step 5: Sign Into your Personal Apple ID

  1. Enter your Apple ID and password (for Personal Apple ID)
  2. Click "Merge Data" when logging in

Step 6: Information To Write Down

THIS IS IMPORTANT! Apple periodically updates their terms of use, which results in a temporary shutdown of your privileges until you log in and accept them. You will be unable to do so if you don't have access to the following answers:
  1. Apple ID and Password
  2. Answers to security questions
Make sure you write them down and have the above readily available- you're gonna need it.

Setting up 2-Factor Authentication for Non-Apple (Android) Users:

  1. Create Apple ID
  2. Identify Apple Device to setup 2-factor authentication (usually another employee with iPhone **there is a maximum number of Apple ID's a device can set up)
  3. Log out of personal Apple ID on Apple device
  4. Log into newly generated Apple ID on Apple Device
  5. Setup 2-Factor authentication (Add trusted number (Android Ok here))
  6. Log out of Newly Created Apple ID on Apple Device
  7. Log back in to Personal Apple ID
  8. Android phone number can receive texts to verify identity now

Frequently Asked Questions

What if I forget my password?

You can reset or change your password from your trusted device when you follow these steps.

On your iPhone, iPad, or iPod touch:

Go to Settings > [your name]. If you're using iOS 10.2 or earlier, go to Settings > iCloud > tap your Apple ID.
Tap Password & Security > Change Password.
Enter a new password.

On your Mac:

Go to  > System Preferences > iCloud.
Choose Account Details. If you're asked to enter your Apple ID password, click Forgot Apple ID or password and follow the onscreen instructions. You can skip the steps below.
Click Security > Reset Password. Before you can reset your Apple ID password, enter the password used to unlock your Mac.

What if I can't access a trusted device or didn't receive a verification code?

If you're signing in and don’t have a trusted device handy that can display verification codes, you can have a code sent to your trusted phone number via text message or an automated phone call instead. Click Didn't Get a Code on the sign in screen and choose to send a code to your trusted phone number. You can also get a code directly from Settings on a trusted device.Learn how to get a verification code.

If you use iOS 11.3 or later on your iPhone, you might not need to enter a verification code. In some cases, your trusted phone number can be automatically verified in the background on your iPhone. It’s one less thing to do, and your account is still protected with two-factor authentication.

If I can't sign in, how do I regain access to my account?

If you can’t sign in, access a trusted device, reset your password, or receive verification codes, you canrequest account recovery to regain access to your account. Account recovery is an automatic process designed to get you back in to your account as quickly as possible while denying access to anyone who might be pretending to be you. It might take a few days—or longer—depending on what specific account information you can provide to verify your identity.

Do I still need to remember any security questions?

No. With two-factor authentication, you don't need to remember any security questions. We verify your identity exclusively using your password and verification codes sent to your trusted devices and phone numbers. When you enroll in two-factor authentication, we keep your old security questions on file for two weeks in case you need to return your account to its previous security settings. After that, they're deleted.

Can Apple Support help me regain access to my account?

Apple Support can answer your questions about the account recovery process, but can't verify your identity or expedite the process in any way.

What are the system requirements for two-factor authentication?

For the best experience, make sure that you meet these system requirements on all of the devices you use with your Apple ID:
  1. iPhone, iPad, or iPod touch with iOS 9 and later
  2. Mac with OS X El Capitan and iTunes 12.3 and later
  3. Apple Watch with watchOS 2 and later
  4. Apple TV HD with tvOS
  5. Windows PC with iCloud for Windows 5 and iTunes 12.3.3 and later

Can Apple IDs created for children use two-factor authentication?

Yes. Any Apple ID that meets the basic system requirements can enroll in two-factor authentication. Learn more aboutwho can use two-factor authentication.

What if I don’t recognize the location shown in my sign in notification?

When you sign in on a new device, you’ll get a notification on your other trusted devices that includes a map showing the approximate location of the new device. This is an approximate location based on the IP address the device is currently using, rather than the exact location of the device. The location shown might reflect the network you're connected to, and not your physical location.

If you know you’re the person trying to sign in but you don’t recognize the location shown, you can still tap Allow and continue signing in. However, if you ever see a notification that your Apple ID is being used to sign in on a new device and you're not the one signing in, tap Don’t Allow to block the sign in attempt.

What if I use two-factor authentication on a device running older software?

If you use two-factor authentication with devices running older OS versions—like an Apple TV (2nd or 3rd generation)—you might be asked to add your six-digit verification code to the end of your password when signing in.Get your verification codefrom a trusted device running iOS 9 and later or OS X El Capitan and later, or have it sent to your trusted phone number. Then type your password followed by the six-digit verification code directly into the password field.

Can I turn off two-factor authentication after I’ve turned it on?

If you already use two-factor authentication, you can no longer turn it off. Certain features in the latest versions of iOS and macOS require this extra level of security, which is designed to protect your information. If you recently updated your account, you can unenroll for two weeks. Just open your enrollment confirmation email and click the link to return to your previous security settings. Keep in mind, this makes your account less secure and means that you can't use features that require higher security.

Is this different than Apple’s current two-step verification feature?

Yes. Two-factor authentication is built directly into iOS, macOS, tvOS, watchOS, and Apple’s web sites. It uses different methods to trust devices and deliver verification codes, and offers a more streamlined user experience. You need two-factor authentication to use certain features that require improved security. 

The older two-step verification feature continues to work separately for users who are already enrolled.


    • Related Articles

    • How Apple Developer Account Transfers Work

      Before You Begin Be sure to have an adequate understanding of the Apple developer account setup process and that you already have a developer account in existence by viewing our Enrolling In The Apple Developer Program article. What's The Point? ...

    • Enrolling In The Apple Developer Program

      Thanks For Partnering With Gallus Golf! We are excited to get to work on your new custom-branded mobile app. In order to submit it for you, we'll need you to complete a few simple steps to set up a developer account with Apple. Please read on for ...

    • Renewing An Apple Developer Account

      What's The Point? Apple requires that you renew your account every year and pay their Annual fee ($99/year US and $119/year CAD). Only the "Account Holder" can renew the account. If you have auto-pay enabled, you will not need to do this unless the ...

    • Accepting Updates to the Apple Developer Program License Agreement

      What's The Point? Apple updates their license agreements about once per quarter, which requires the developer account contact to accept the new terms of service through their online dashboard. (An automated email from Apple will be sent to the ...

    • How Gallus onTap Works

      This article will outline the basics of Gallus Golf's onTap food & beverage software and link to sub-articles that explain concepts in greater detail. Overview Video Before You Begin Make sure to have an appropriate understanding of your food & ...