Protecting the account that controls the entire domain zone is paramount. This starts with setting up a strong password in combination with two-factor authentication (2FA) which requires a second piece of information for validation when logging in.
After enabling 2FA in a Cloudflare® account, any TOTP (Time-based One Time Password) application like Google Authentication or Authy may be used.
Enable 2FA for a Cloudflare account
-
Log in to the Cloudflare dashboard.
-
Under the My Profile dropdown, click My Profile.
-
Click the Authentication tab.
-
Scroll down to the Two-Factor Authentication section and click to toggle switch and toggle it to the On position.
Full instruction are available on the Cloudflare Knowledge Base.