How to require multi-factor authentication for Dropbox teams

Updated Jan 18, 2024
person icon

The information in this article applies to admins on Dropbox team accounts.

Dropbox team admins can require all or some team members to use two-step verification. You can do this through the admin console or through your identity management provider if you use single sign-on (SSO). Each team member has to enable two-step verification on their own account. However, you can request that members enable this feature, and then ensure that it stays on once enabled.

How to require two-step verification for team members

  1. Log in to with your admin credentials.
  2. Click Admin console.
  3. Click Settings.
  4. Under Authentication, click Two-step verification.
  5. Toggle the setting next to Two-step Verification from Optional to Required.
  6. Click Save changes.
highlighter icon


  • Team members won't be protected until they set up two-step verification
  • Team admins can track setup progress in the Members tab, under the “Two-step verification” column.

How will required two-step verification affect my team?

Newly invited members will be required to enable two-step verification after accepting the invitation to join your team. 

Existing members will be required to enable two-step verification the next time they log in. Requiring two-step verification won't log your team member out of their devices or web sessions, and won't interrupt their workflow. Existing team members who try to connect a new computer or mobile device as their first log-in after two-step verification is enabled will be directed to the Dropbox website to log in (and set up two-step verification)

What will a team member see when setting up two-step verification?

When team members log in to Dropbox, they will see a Get Started prompt. 

  1. Team members can choose to receive verification codes via text message, or to use an authenticator app, and then click Send code.
  2. Team members will next be required to verify that two-step verification is working— they will receive a text message to the phone number entered, or else need to enter the two-step verification code generated via the authenticator app.
  3. Lastly, team members will receive an emergency backup code, which can be used if they ever lose their mobile phone.
    • Alternatively, team admins can reset two-step verification for team members as needed
  4. Click Turn on two-step verification.

How to add users to the exception list

If you choose to require two-step verification for your team, you can waive the requirement for individual team members by adding them to the exception list. To do so:

  1. Log in to with your admin credentials.
  2. Click Admin console.
  3. Click Settings.
  4. Under Authentication, click Two-step verification.
  5. Next to Optional for specific members, click either No one added or Optional for [x] members.
  6. Type the emails or names of users you would like to add.
  7. Click Save changes.
Was this article helpful?

We’re sorry to hear that.
Let us know how we can improve.

Thanks for your feedback!
Let us know how this article helped.

Thanks for your feedback!

Community answers

Other ways to get help