Embedded Wallet MFA

Privy enables users to set up multi-factor authentication (MFA) for their embedded wallet. MFA helps secure the embedded wallet by requiring additional verification of a user's identity when the wallet is used.

Once a user enrolls in wallet MFA, any action that requires use of the embedded wallet's private key will require the user to complete MFA verification. This includes signing messages, sending transactions, exporting the embedded wallet, and recovering the embedded wallet for use on new devices.

Privy currently supports two methods of wallet MFA:

SMS, where users verify with a 6-digit MFA code sent to their phone number
Time-based one-time password (TOTP), where users verify with a 6-digit MFA code from an authentication app, like Authy or Google Authenticator
Passkeys, where users verify with a previously registered passkey, generally through biometric authentication on their device

To use wallet MFA within your app, check out the guides below!

Set up MFA methods

Configure MFA methods in the Dashboard

Enroll users in MFA

Prompt users to enroll in one of your app's MFA methods

Use MFA in your app

Secure signatures and transactions with MFA

Use custom UIs for MFA

Implement MFA with your own UIs

Creating wallets

Customizing UI prompts

Recovery

MFA

Web3 integrations

Frameworks

UI issues

Asset onboarding

Customizations

Allowlists and Denylists

Miscellaneous

Embedded Wallet MFA

Set up MFA methods

Enroll users in MFA

Use MFA in your app

Use custom UIs for MFA

Web3 integrations

Embedded Wallet MFA ​

Set up MFA methods

Enroll users in MFA

Use MFA in your app

Use custom UIs for MFA

Embedded Wallet MFA