# Setup 2FA (TOTP)

Go to the **Settings** page of RDPHelper by clicking on the Settings tab on the left side.

<figure><img src="https://2601418115-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LvlDvQUegKTYko95Z1l%2Fuploads%2Fw6UMYBkdXnqeA0XnQTUH%2Fimage.png?alt=media&#x26;token=c2bd9b94-9627-43a2-9e17-a0c09ce02847" alt=""><figcaption></figcaption></figure>

Thereafter, click the **Start Setup** button in the middle of the screen.

<figure><img src="https://2601418115-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LvlDvQUegKTYko95Z1l%2Fuploads%2F4smZIZ9tWztdXB4WsIsE%2Fimage.png?alt=media&#x26;token=441903aa-211d-4c37-96b1-cbcf28a5807f" alt=""><figcaption></figcaption></figure>

You will be shown a QR code, scan this QR code with your device.&#x20;

<figure><img src="https://2601418115-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LvlDvQUegKTYko95Z1l%2Fuploads%2FXatmuQkqv28XPEhyqgce%2Fimage.png?alt=media&#x26;token=eac0e897-7705-47f6-b20e-78fedcc88c3b" alt=""><figcaption></figcaption></figure>

We will be using Google Authenticator for this guide.

<div><figure><img src="https://2601418115-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LvlDvQUegKTYko95Z1l%2Fuploads%2Fb87n7VqU7MZ61Ev3MiNa%2FIMG_1627.PNG?alt=media&#x26;token=a623883c-7004-485b-9704-506cf561150c" alt=""><figcaption></figcaption></figure> <figure><img src="https://2601418115-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LvlDvQUegKTYko95Z1l%2Fuploads%2FIiFhOhVChISNwi3m3QDH%2FIMG_1633.PNG?alt=media&#x26;token=41702ec9-7ca9-4883-b2ce-d3a2dfe89a76" alt=""><figcaption></figcaption></figure></div>

Once you've scanned the QR code to your device, click on the Next button. RDPHelper will then ask you to **verify** using the code from your 2FA TOTP app.

<figure><img src="https://2601418115-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LvlDvQUegKTYko95Z1l%2Fuploads%2FQEk0kTeLpmK4KFH2dt1p%2Fimage.png?alt=media&#x26;token=3aec0eaf-1456-47ab-892c-ae981d6e8937" alt=""><figcaption></figcaption></figure>

Once you click Verify, RDPHelper will show you a backup code. Please note down this backup code somewhere safe in case you lose access to the TOTP codes.&#x20;

<figure><img src="https://2601418115-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LvlDvQUegKTYko95Z1l%2Fuploads%2FfJkfid0THYBYBh0XzSEh%2Fimage.png?alt=media&#x26;token=0e09c652-168a-4b22-9468-f4dd2756d486" alt=""><figcaption></figcaption></figure>

We would recommend disabling 2FA for whitelisted IP addresses, so you don't have to input a code each time you login from your home IP.

<figure><img src="https://2601418115-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LvlDvQUegKTYko95Z1l%2Fuploads%2FA9wjx8DDw2VhrSLYIXQL%2Fimage.png?alt=media&#x26;token=21c97e2a-bdd2-48c9-8410-d9cb721e7d9f" alt=""><figcaption></figcaption></figure>

Now when you try to connect to your server with a non-whitelisted IP, you will be greeted with a 2FA screen asking you to authenticate yourself.

<figure><img src="https://2601418115-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-LvlDvQUegKTYko95Z1l%2Fuploads%2FsHJVhcnEuYDyazmIMunP%2FUntitled-1.png?alt=media&#x26;token=19f7a6ea-0331-418f-a95f-e2f93738043a" alt=""><figcaption></figcaption></figure>