2FA or two-factor authentication is the requirement of an additional piece of information to gain access to an account beyond the traditional username & password combination.


This may come in the form of:

  • SMS – a unique code sent to your phone # via text message
  • Authenticator app – a unique time-limited code generated by software such as Authy or Google Authenticator
  • Security key – a hardware device that plugs into your computer’s USB port. Popular brands include YubiKey and Google Titan

The following are a selection of CIRA-accredited domain name registrars that offer one or more of these forms of 2FA methods:

RegistrarSMSAuth
App
Security
Key
DynadotYesYesNo
easyDNSYesYesNo
Gandi.netNoYesYes
GoDaddyYesYesYes
HexonetNoYesNo
NamecheapYesYesYes
NamesiloNoYesNo
UniregistryNoYesNo
Web Hosting CanadaNoYesNo
Webnames.caYesNoNo

This is not meant to be a comprehensive list nor an endorsement of the overall security of the respective registrars.

Do note that the loss of access to your second factor method will require significant steps to regain access to your account which can vary between registrars.