Facebook about a month ago began to roll out a two-factor authentication system designed to protect user accounts from unauthorized access. Two-Factor authentication is designed to add a second form of authentication to the login process, usually in form of a code that is send to the user.
The company confirmed today on the official Facebook blog that the feature has been rolled out to all Facebook users. Every Facebook user has now the option to enable two factor authentication on Facebook. The protection is called Facebook Login Approvals, and designed to add a second layer of protection to the log in process on the social networking site.
Facebook users can enable the new security feature under Account > Account Settings > Account Security.
This launches a wizard that guides the user through the activation of the security service. Login Approvals works in the following way:
You link a mobile phone number to your Facebook account. This mobile phone number receives a code via SMS whenever someone with the correct username and password tries to log in from an unauthorized computer.
This means that you do not get a code when you log in from your home computer. Attackers do not get to see the code either when they do not enter the right login credentials.
The only two scenarios where the code is displayed are unauthorized login attemps by attackers who have your username and password, and first time log ins on new computer systems or devices.
Facebook users will furthermore be notified of log in attempts from unauthorized computer systems. An unsuccessful attempt usually means that someone else is in possession of a user's Facebook username and password. Users get options to change their account password right away to protect their account further.
Back to the configuration. Codes are currently only send to mobile phones via SMS. This means that you need to add at least one mobile phone number to your Facebook account.
Users who have not done that already are asked to add a mobile phone number to their account to complete the Login Approvals setup.
It is afterwards necessary to confirm the phone by entering a code that is send to it by Facebook. The mobile phone number and Facebook account are from that moment on linked.
What happens if you lose your phone? You still have the option to log in from computer systems that have been authorized previously.
Facebook users who want to add an extra layer of protection to their account should consider enabling login approvals. Some users may not want to add a mobile phone number to their Facebook account on the other hand. There is unfortunately no way around this currently if you want to make use of Login Approvals. (via Loginhelper.com Facebook Login Approvals)