Setting Up MFA with Google Authenticator on GEDmatch
Google Authenticator is a free app that generates one-time security codes on your phone. When you log in to GEDmatch, you’ll enter your password and then type a 6-digit code from the app. The code changes every 30 seconds, so it can’t be reused by anyone else.
This is a good option if you’re already familiar with Google Authenticator or prefer typing a code rather than using push notifications.
What You’ll Need
• Your GEDmatch login credentials
• A smartphone (iPhone or Android)
• Google Authenticator or Authy app (both free from the App Store or Google Play Store)
Step-by-Step Setup
Step 1: Log In to GEDmatch
Log in at www.gedmatch.com with your email and password. After logging in, you’ll see a prompt asking if you’d like to set up multi-factor authentication. Choose “Secure My Account” to continue.
Step 2: Select Google Authenticator
On the MFA method selection screen, choose “Google Authenticator or similar”.
Step 3: Download Google Authenticator (If You Haven’t Already)
If you don’t already have the app, download it now:
• iPhone: Search “Google Authenticator” in the App Store
• Android: Search “Google Authenticator” in the Google Play Store
Step 4: Scan the QR Code
Your GEDmatch screen will display a QR code. Open Google Authenticator on your phone, tap the “+” button (to add a new account), and select “Scan a QR code.” Point your phone’s camera at the QR code on your computer screen.
Once scanned, Google Authenticator will show a 6-digit code that changes every 30 seconds. A GEDmatch entry will appear in your list of accounts within the app.
Can’t scan the QR code? GEDmatch will display a text-based secret key when you click the option “Trouble scanning?” Copy the key shown on your computer screen and paste or type it into Google Authenticator.
Step 5: Enter the Verification Code
GEDmatch will ask you to enter a code from Google Authenticator to confirm setup. Open the app, find the GEDmatch entry, and type the current 6-digit code into the field on your computer screen. Click “Verify” or “Submit.”
Tip: The code refreshes every 30 seconds. If the code is about to expire (the timer is almost out), wait for the next code to appear before entering it.
Step 6: Save Your Recovery Code
After verification, you’ll be shown a recovery code. This is important — if you ever lose access to your phone, this code is how you’ll get back into your account.
Write this code down and store it somewhere safe (not on your phone). Keep it with other important documents or in a password manager.
Step 7: Set Up a Passkey (Optional but Recommended)
After MFA is set up, GEDmatch will ask if you’d like to create a passkey. Passkeys let you log in using your fingerprint, Face ID, or a password manager — no password needed.
If you’d like to set this up:
• Choose “Set up passkey” when prompted
• Follow your device’s instructions to save the passkey
• Next time you log in, you can use your passkey instead of your password
Where your passkey is saved depends on your device:
• On iPhone: Saved to iCloud Keychain (uses Face ID or Touch ID)
• On Mac/PC: Saved to your browser or password manager (like 1Password)
View the article on passkeys for more details: https://support.gedmatch.com/portal/en/kb/articles/understanding-and-setting-up-passkeys-on-gedmatch
What Logging In Looks Like After Setup
With Google Authenticator (no passkey): Enter email → Enter password → Open Google Authenticator, type the 6-digit code → Logged in
With passkey: Enter email → Use fingerprint/Face ID/password manager → Logged in
Managing Your MFA Settings
You can manage your MFA setup at any time from your profile.
• Log in to GEDmatch
• Navigate to your Profile settings
• Find the MFA / Security section
From here you can:
Remove your current MFA method: If you want to switch to a different method or start over, you can delete your current MFA setup. This will also remove your recovery code. The next time you log in, you’ll be prompted to set up MFA again and will receive a new recovery code.
Set up a new MFA method: After removing all MFA methods, you can set up a new one directly from this screen without waiting for the next login prompt.
Frequently Asked Questions
What if I lose my phone?
Use the recovery code you saved during setup. On the login screen, look for the option to use a recovery code instead of the authenticator code.
What if I get a new phone?
You’ll need to set up Google Authenticator again on your new phone. Go to your GEDmatch profile, remove the existing MFA method, and set it up again using your new device. If you can’t log in, use your recovery code to access your account first.
Can I use Google Authenticator for other websites too?
Yes. Google Authenticator can store codes for many different websites and apps. Your GEDmatch entry will appear alongside any others you’ve set up.
Do I have to use MFA?
Not right now. You can choose “Remind me in 30 days” to delay. However, we strongly recommend it to protect your account and your genetic data.
What’s the difference between Google Authenticator and Auth0 Guardian?
Both are MFA methods. Google Authenticator requires you to type a 6-digit code each time you log in. Auth0 Guardian sends a push notification to your phone and you just tap “Approve.” Choose whichever you find more convenient.
Need Help?
If you run into any issues during setup, contact our support team by submitting a ticket through this portal. We’re happy to walk you through it.
Related Articles
Understanding and Setting Up Passkeys on GEDmatch
Passkeys are a newer, simpler way to log in to your GEDmatch account. Instead of typing a password and then approving an MFA notification, you can log in with just your fingerprint, Face ID, or a password manager. It’s faster, easier, and more secure ...Using a Password Manager for MFA on GEDmatch
If you don’t have a smartphone, or prefer to keep everything on your computer, you can use a password manager to handle multi-factor authentication (MFA) on GEDmatch. Many password managers include a built-in authenticator that generates the same ...How to Set Up Multi-Factor Authentication (MFA) on GEDmatch
Multi-factor authentication adds an extra layer of security to your GEDmatch account. After entering your password, you’ll verify your identity through a second method — like approving a notification on your phone. This means that even if someone ...Troubleshooting Common GEDmatch Errors
Site Access Errors 403 Error / "Bot Detection" Block Symptom: You receive a 403 error or a message indicating you have been identified as a bot and cannot access the site. Cause: GEDmatch has security measures in place to prevent automated access. ...How to Use GEDmatch DNA Matching Tools (One-to-Many, One-to-One, Segment Search)
Before You Begin To use GEDmatch's matching tools, you need: 1. A GEDmatch account with at least one uploaded DNA kit. 2. Your kit must have finished processing (typically 24–48 hours after upload). If your kit is still processing, matching tools ...