Take full control of your 2FA security, the open‑source authenticator you host yourself, accessible from any browser.
Select a plan to deploy 2FAuth instantly
Take full control of your 2FA security, the open‑source authenticator you host yourself, accessible from any browser.
2FAuth is a web‑based, open‑source two‑factor authentication manager designed to completely replace mobile OTP apps like Google Authenticator, Microsoft Authenticator, or Authy. Instead of reaching for your phone every time a code is needed, you simply open your browser, from any device, anywhere in the world, and instantly generate your TOTP or HOTP codes through a clean, modern, and responsive interface.
Completely free under the AGPL‑3.0 license, no platform costs, API fees, or hidden charges. Everything, your TOTP secrets, user accounts, encrypted data, and authentication flows, lives entirely within your own infrastructure. You are not sending your 2FA secrets to any third‑party cloud.
A VPS keeps 2FAuth running 24/7, so your authentication codes are always available even when your phone is lost or left at home. No more being locked out of critical accounts because your mobile authenticator isn't with you.
A VPS allows you to run a multi‑user instance where each team member or family member has their own isolated vault of 2FA accounts. Each person logs into their own 2FAuth account from any browser, and everything remains encrypted and stored on your own server, with full auditability.
2FAuth publishes an official Docker image that runs without root privileges and supports amd64, arm64, armv7, and more. With a single docker-compose.yml file and a few environment variables, you can have a production‑ready 2FAuth instance running in minutes behind your own domain with HTTPS.
Take complete ownership of your two-factor authentication system by hosting 2FAuth on your own VPS. Your sensitive authentication data stays fully under your control without relying on third-party apps or external services.
2FAuth fully implements the TOTP (RFC 6238) and HOTP (RFC 4226) standards, generating the exact same six‑digit rotating codes as Google Authenticator and every other compliant 2FA app.
Adding new accounts is remarkably easy: you can scan a QR code directly in your browser using your device's camera, or use the advanced form to enter the secret key manually. This is perfect for situations where you only have a text‑based backup code or are setting up a new service on a desktop computer. The QR scanner works without any extra mobile apps.
Managing a growing list of 2FA accounts is effortless with custom groups that have their own names, icons, and categories. You can drag and drop accounts between groups, use the built‑in search to instantly filter your collection, and even edit existing accounts, including those imported from other apps.
All sensitive data stored in the database can be optionally encrypted (strongly recommended), so even if an attacker gains access to your database files, they cannot read your 2FA secrets without the application key. You can log into 2FAuth itself using a WebAuthn / FIDO2 security key like a Yubikey, and optionally disable traditional password‑based logins entirely.
2FAuth can import from Google Authenticator (via the QR export feature), Aegis, 2FAS, and several other popular authenticator apps, no manual re‑entry of dozens of secrets. Because everything is self‑hosted, you can also export your entire configuration at any time as a backup, then store that backup in an encrypted vault or offline location.
2FAuth exposes a complete REST API covering accounts, OTP generation, groups, icons, preferences, and administration. Authentication is done via Personal Access Tokens (PAT) passed in the Authorization header, allowing you to integrate 2FAuth with CI/CD pipelines, custom dashboards, or monitoring systems. The API is fully documented and actively maintained.
Manage all your two-factor authentication codes in one secure place instead of relying on multiple devices or apps. Access your OTPs anytime through a simple web interface without worrying about device loss.
Enable team members to securely share and manage authentication codes for shared tools, dashboards, and services while maintaining controlled access through role-based permissions.
Avoid the risk of losing access to your accounts by storing your authentication codes in a self-hosted environment that you control and can back up easily.
Simplify access to staging servers, cloud platforms, and development tools by centralizing OTP management, making it easier for teams to work efficiently without delays.
Keep sensitive authentication data away from third-party apps by hosting 2FAuth on your own VPS, ensuring full control over privacy and security.
When you run 2FAuth as a self‑hosted, containerized application, your underlying VPS needs to deliver uncompromising security, Docker‑friendly performance, and reliable uptime. AccuWeb Hosting’s 2FAuth VPS Docker plans are purpose‑built for such workloads, offering full root and SSH access so you can install Docker, manage containers, and customize the environment without any restrictions.
The KVM‑based infrastructure pairs high‑speed storage with a 1 Gbps network port, ensuring that pulling images, building containers, and generating time‑sensitive 2FA codes all happen with minimal latency.
Security is equally critical for an authenticator like 2FAuth, and AccuWeb includes 24/7 DDoS protection, dedicated IP addresses, and backups to safeguard your TOTP secrets. With a 99.9% uptime guarantee and a choice of global data center locations, your two‑factor authentication service remains accessible whenever you need it.
2FAuth is a self-hosted web application that allows you to store and manage your two-factor authentication (2FA) tokens in one place. It generates time-based one-time passwords (TOTP) just like mobile apps, but through a secure web interface you control.
Unlike traditional apps that lock your codes to a single device, 2FAuth lets you access your authentication tokens from any device with a browser. This gives you more flexibility while keeping full control over your data.
While not mandatory, a VPS is highly recommended. It provides a secure, always-available environment where you can host 2FAuth and access your authentication codes anytime without depending on a single device.
Yes, that’s one of its biggest advantages. You can securely access your 2FA codes from desktops, laptops, tablets, or mobile browsers.
Yes, 2FAuth can be used by teams who need centralized access to shared authentication accounts, depending on how you configure access and permissions.
Docker allows you to run 2FAuth in an isolated container, making setup faster and more consistent. It also makes updates, backups, and migrations much easier compared to manual installations.
Yes, updating is simple. You just need to pull the latest container image and restart the service, which makes maintenance quick and hassle-free.
Yes, Docker makes it easy to run multiple applications on a single VPS without conflicts, as each service runs in its own container.
Run 100+ open-source LLMs locally with a simple REST API. Pair with Crawl4AI for a fully self-hosted AI data pipeline.
Self-hosted AI chat interface supporting multiple LLM providers with RAG capabilities-perfect for querying your Crawl4AI data.
Visual framework for building multi-agent and RAG applications-connect Crawl4AI output to vector stores and LLM pipelines.
See our Cookie Policy
We value your input
Want us to follow up with an answer or a custom quote? Drop your email below. Totally optional.
