Help
Hosts
Help centerTopicsMy Holidu Account

How to Set Up Two-Factor Authentication (2FA) on Your Holidu Account

To keep your account and data secure, Holidu uses Two-Factor Authentication (2FA) for all hosts that do not use social logins (where 2FA is also offered, for example by Gmail). This extra layer of security protects your account even if someone else knows your password. 2FA is mandatory for all hosts with published properties.

What is 2FA?

Two-Factor Authentication requires two things to log in:

  1. First factor: Your email and password
  2. Second factor: A one-time verification code, sent via one of the following methods:
    1. SMS (recommended)
    2. Authenticator app (e.g., Google Authenticator, Authy)
    3. Email (no longer supported for new hosts)

You can set up multiple methods for backup access. However, you can only use one instance of each method—for example, only one phone number, one email address, and one authenticator app can be registered at a time.

Where to Set Up 2FA

  1. Log in to your Holidu Host Account. You may be prompted to set up 2FA immediately after login. If not, continue to step 2.
  2. Go to: Holidu Logo > Security
  3. Click Configure next to the authentication method(s) you want to activate.
Screenshot of the Holidu Security settings page showing the authentication method configuration options.

Choose Your 2FA Method

Method 1: SMS (Mobile Phone) — Recommended

  1. Select SMS from the list.
Screenshot of the SMS authentication method selection on the Holidu Security page.
  1. Enter the phone number you want to use and click Get SMS Code.
Screenshot of the phone number entry field with the Get SMS Code button on the Holidu platform.
  1. Enter the 6-digit code you receive and click Verify.
Screenshot of the verification code entry field with the Verify button for SMS authentication.
  1. You'll see a confirmation message once the setup is complete. Congratulations, your account and your data are now secured!

Method 2: Email (No Longer Available for New Hosts)

  1. Choose Email authentication from the list of methods.
Screenshot of the Email authentication method selection option on the Holidu Security settings.
  1. The system will send a verification code to your registered Holidu email address.
  2. Check your inbox, enter the code, and click Submit code.
Screenshot of the email verification code entry field with the Submit code button.
  1. You'll see a confirmation message once the setup is complete. Congratulations, your account and your data are now secured!

Method 3: Authenticator App

An authenticator app is a small program you install on your smartphone or tablet. It generates a new 6-digit security code every 30 seconds that only you can see. Unlike text messages or emails, the app works even without internet or mobile signal, because the codes are created directly on your device.

  1. Download an app like Google Authenticator (Android | Apple) or Authy (Android | Apple).
  2. Select Authenticator App from the list.
Screenshot of the Authenticator App selection option on the Holidu Security page.
  1. Scan the QR code displayed on your screen (or use a manual code if scanning doesn't work).
Screenshot of the QR code to scan for Authenticator App setup on Holidu.
  1. Enter the 6-digit code generated by the app, give the device a name (e.g., "My mobile phone"), and click Submit.
  2. You'll see a confirmation message once setup is complete. Congratulations, your account and your data are now secured!
  3. Authenticator apps generate codes locally, so they work without internet or mobile signal.

After Setup

From now on, logging in requires:

  1. Entering your password
  2. Entering the 6-digit code from your chosen 2FA method

You can manage your 2FA settings at any time via the Security section in your Holidu account settings.

Tips for Success

  • We recommend starting with SMS, as it's the fastest and easiest method.
  • Enable at least two different methods in case you lose access to one.
  • Remember: Only one instance of each method can be used (one email, one phone, one authenticator app).
  • Keep your recovery codes or backup contact information in a safe place for account recovery emergencies.
  • Test your 2FA setup by logging out and logging back in to ensure it works correctly.

Frequently Asked Questions (FAQ)

Why do I need to set up 2FA?

To protect your account from unauthorized access, especially if your password is ever compromised. 2FA adds an essential security layer that makes it significantly harder for unauthorized users to gain access to your Holidu account and property management features.

I do not see an option to set up 2FA in my account

Two-Factor Authentication is only available if you use a combination of email and password to login. If you are using a login method like Facebook or Google, you are already secure, since they also offer Two-Factor Authentication through their platforms.

What if I lose access to my phone or email?

You can use a backup method or contact Holidu support to recover access. We recommend setting up a secondary verification method to avoid incidents. If you have multiple 2FA methods enabled, you can use an alternative method to regain access to your account.

Can I skip setting up 2FA?

Only temporarily. 2FA becomes mandatory once you publish a property on Holidu to ensure your listings and guest information remain secure.

How long does setup take?

Less than a minute in most cases. The setup process is straightforward and quick for all three authentication methods.

Can I use more than one method?

Yes! You can activate more than one method for backup access. Having multiple 2FA methods provides greater flexibility and ensures you can access your account even if one method becomes temporarily unavailable.

What if I don't receive the code?

Check spam folders (email), signal strength (SMS), or time sync on your device (authenticator app). Still no luck? Contact Holidu support for assistance. Ensure your phone number is correct and your email account is active before requesting codes.

Do collaborators need to activate 2FA too?

Yes, if they have access to published properties. Collaborators with account access should set up 2FA to maintain the security of your listings and booking information.

Can I change my 2FA method later?

Yes, go to Settings > Security to update, remove, or add new authentication methods at any time. You have full control over your security preferences and can modify them as needed.

Which 2FA method is most secure?

All three methods are secure. However, authenticator apps are generally considered the most secure because they generate codes locally on your device without relying on SMS or email transmission. SMS is the most convenient and easiest to use for most hosts.

What happens if my authenticator app crashes or I uninstall it?

If you lose access to your authenticator app, you should have enabled a backup 2FA method (SMS or email). Use your backup method to log in, then you can re-add the authenticator app or choose a different method.

Is 2FA mandatory for guest accounts?

2FA is specifically mandatory for host accounts with published properties. Guest accounts do not require mandatory 2FA activation, though guests can optionally enable it for added security.

Did this article answer your question?

Do you want to contact us?

We’re here to help. You can contact us directly if you need assistance or have questions.

Contact us