VPNs with Two-Factor Authentication

TL;DR

Yes, many consumer VPN services now support two-factor authentication (2FA), but SecurID specifically isn’t widely supported. Google Authenticator, Microsoft Authenticator, Authy and SMS verification are much more common. Here’s how to find a suitable service and set it up.

Finding a VPN with 2FA

1. Check the Provider’s Website: The easiest way is to visit the website of popular VPN providers (NordVPN, ExpressVPN, Surfshark, CyberGhost, ProtonVPN etc.) and look for a ‘Security’ or ‘Features’ section. They usually clearly state if 2FA is offered.
2. Read Reviews: Tech websites often review VPNs and highlight security features like 2FA. Search for “[VPN provider name] two-factor authentication review”.
3. Look for Supported Methods: Don’t assume SecurID support. Most providers use these:
   • Authenticator Apps: Google Authenticator, Microsoft Authenticator, Authy are the most common.
   • SMS Verification: A code is sent to your phone (less secure).
   • Email Verification: Similar to SMS, but via email (also less secure).

Setting up 2FA – Example with NordVPN & Google Authenticator

The process is similar for most providers. This example uses NordVPN as it’s popular and has good documentation.

1. Log into your NordVPN Account: Go to the NordVPN website and sign in.
2. Navigate to Settings: Click on your profile icon, then select ‘Settings’.
3. Find Two-Factor Authentication: Look for a section labelled ‘Two-Factor Authentication’ or similar. It might be under ‘Security’.
4. Enable 2FA: Toggle the switch to enable it.
5. Download an Authenticator App: If you don’t have one, download Google Authenticator (available on iOS and Android) or Microsoft Authenticator.
6. Scan the QR Code: NordVPN will display a QR code. Open your authenticator app and use its ‘Add Account’ feature to scan this code.

   # Example of what you might see in Google Authenticator after scanning

7. Enter the Verification Code: The authenticator app will generate a 6-digit code that changes every 30 seconds. Enter this code into NordVPN’s website to confirm.
8. Save Recovery Codes: NordVPN (and most providers) will give you recovery codes. Store these in a safe place! You’ll need them if you lose access to your authenticator app or phone.

Other VPN Providers & Their 2FA Options

• ExpressVPN: Supports Authenticator Apps (Google Authenticator, Authy) and SMS verification.
• Surfshark: Offers Google Authenticator support.
• CyberGhost: Provides Google Authenticator and SMS options.
• ProtonVPN: Supports Google Authenticator and U2F/WebAuthn security keys (more secure than apps).

SecurID Support

Direct SecurID support is rare in consumer VPNs. It’s more common in enterprise solutions. If you absolutely need SecurID, consider a business-focused VPN service or look into using a separate 2FA app alongside your VPN.

Important Considerations

• Recovery Codes: Seriously, save them! Losing these and your authenticator access can lock you out of your account.
• Authenticator App Security: Protect your phone with a strong passcode/biometrics. Consider backing up your authenticator app (Authy offers this).
• SMS 2FA is Less Secure: SIM swapping attacks are possible, so prefer an authenticator app if available.