Two-Factor Authentication

Two-Factor Authentication (2FA) is an extra layer of protection for your wallet that allows you to confirm transactions through your Telegram account.

Even if your seed phrase is compromised, your funds can’t be stolen without access to your Telegram. This gives you time to react and move your assets to a different wallet.

How does it work?

W5 wallets have a key feature — they can interact with extensions: these are separate smart contracts that the wallet owner delegates certain permissions to (for example, allowing the extension to sign transactions on their behalf).

Two-factor authentication is exactly that kind of extension. It breaks the transaction signing process into several steps.

Here’s how 2FA works, step by step:

  1. First, you link your W5 wallet to the @tonkeeper Telegram bot, associating your Telegram profile with your wallet.
  2. Then, as usual, you sign a transaction in Tonkeeper. But instead of being immediately sent to the blockchain, the wallet sends the request to TONAPI.
  3. TONAPI notifies you of the request via the @tonkeeper bot in Telegram, where you can approve or reject it.
  4. If you approve the request, the extension verifies the signatures, and only then is the transaction broadcast to the blockchain.

How to enable 2FA?

2FA is available only for the W5 standard wallets. To activate it:

  1. Go to Settings > Two-Factor Authentication.

  1. Tap 'Continue' and link your wallet to your Telegram account.
  2. Go back to your wallet and tap 'Activate 2FA'.

When 2FA is enabled, 0.15 TON will be deducted from your wallet to cover the 2FA extension’s blockchain fees. If you disable 2FA, the unused balance will be refunded to your wallet.

Are there any limitations?

  • 2FA is not available in the mobile versions of Tonkeeper, including the @tonkeeper mini-app in Telegram. Use Tonkeeper Pro on iOS, desktop, and web.
  • 2FA cannot be used with the Battery feature or gasless transfers.
  • The multi-send feature is temporarily limited, so you can only send up to 50 transactions at once.

How to disable 2FA?

To disable the 2FA extension, go to Settings > Two-Factor Authentication > Disable 2FA. You’ll need to confirm the request directly in the Telegram account linked to your wallet.

What if I lost access to my Telegram account?

If you’ve lost access to the Telegram account previously linked, you can connect a new one.

To do this, go to Settings > Two-Factor Authentication > Change Linked Telegram Account.

Please note that you need to confirm the changes from your previous Telegram account. However, if you no longer have access to it, your new account will be linked automatically after 14 days. This delay is in place to help protect your security.

Does 2FA support all types of transactions?

Yes, 2FA will be required for all transactions, including transfers, token swaps, and operations in dApps.

Did this answer your question? Thanks for the feedback There was a problem submitting your feedback. Please try again later.