Your default login experience

Email code verification is active on every Rewind account automatically — no setup needed. After entering your password, you'll see the Verification Required screen. Enter the 6-digit code sent to your registered email address to finish signing in.

MFA methods available in Rewind

To view or change your MFA settings, navigate to Account Settings > Security.

Rewind supports three MFA methods:

• Email code (default)
  A one-time verification code is sent to your registered email address each time you log in. This is mandatory for all Rewind accounts and is active automatically — no setup needed.
• Authenticator app
  Use a TOTP-compatible authenticator app to log in to Rewind. More phishing-resistant than email, and the recommended option for most users.
• Security key
  Register a FIDO2/WebAuthn-compatible hardware key for the strongest available protection. Ideal for admins and high-security environments.

Steps to set up an authenticator app

1. Log in to your Rewind account at app.rewind.com.
2. Navigate to Account Settings > Security.
3. Under Authenticator App, select Set up.
4. Enter your Rewind account password when prompted.
5. Open your preferred authenticator app (Google Authenticator, Authy, 1Password, Microsoft Authenticator, or any TOTP-compatible app) and scan the QR code shown in Rewind.
6. Enter the 6-digit code generated by your app to confirm the connection.

Your account will now use your authenticator app for MFA instead of email codes. You'll need to enter a code from your app each time you log in.

Steps to register a security key

1. Log in to your Rewind account at app.rewind.com.
2. Navigate to Account Settings > Security.
3. Under Security Keys, select Register Security Key.
4. Follow the on-screen prompts with your security key present.

Rewind supports FIDO2/WebAuthn-compatible hardware keys. You can register multiple security keys, or use a combination of a security key and an authenticator app, to avoid being locked out if you lose a device.

How Rewind chooses your MFA method at login

The MFA method you're prompted for at login depends on what you have configured in your account.

• Email code only (default) — If no additional MFA method is configured, you'll be prompted for an email code at every login.
• Authenticator app only — You'll be prompted for a code from your authenticator app at every login.
• Security key only — You'll be prompted for your security key at every login.
• Authenticator app and security key — Rewind defaults to prompting for your security key. If you need to use your authenticator app instead, select the option to switch at the bottom of the login screen.

Steps to deactivate an MFA method

• Authenticator app:
  1. Navigate to Account Settings > Security.
  2. Under Authenticator App, select Update and verify with your account password and the 6-digit code from your authenticator app or one of your backup codes.
  3. Select Yes, disable to confirm the deactivation. Your account will revert to email code verification if no other MFA method is active.
• Security key:
  1. Navigate to Account Settings > Security.
  2. Select Delete beside the registered key and verify with your account password.
  3. Click Delete to confirm the deletion. Your account will revert to email code verification if no other MFA method is active.

Related articles

• How to enforce MFA use as an administrator — Covers how Organization Admins and Owners can require MFA across all users in their organization.
• How to update your name or email address in Rewind — MFA email codes are sent to your registered email address, so keeping it current ensures you can always receive them.

Need help?

If you have questions or need assistance, contact help@rewind.com or submit a request.