Two-Factor Authentication (2FA) Guide
Your PolyBot wallet is controlled through your Telegram-authenticated PolyBot account in the bot and Mini App. 2FA adds a time-based code from a separate authenticator app before sensitive actions.
🔐 Why enable 2FA?
With 2FA on, someone who compromises your Telegram still can't withdraw funds or export your private key without your authenticator code. For any wallet holding meaningful value, this is worth the minor extra step.
🛡️ What it protects
Only the actions that move funds out or expose your keys:
- 💸 Withdrawals — sending funds to an external Polygon address
- 🔑 Private key export — revealing the key that controls your wallet
Trading, deposits, browsing — all unaffected.
⚙️ Setting up 2FA
Requirements
A TOTP-compatible authenticator app: Google Authenticator, Authy, Microsoft Authenticator, or 1Password.
Enable
- Open Settings → Two-Factor Authentication in Telegram, or Mini App → Security Center.
- Tap 🔐 Enable 2FA
- Scan the QR code (or use manual entry key)
- Enter the 6-digit code from your app
- Save your backup codes
Save Your Backup Codes
Shown only once. Store securely offline.
🔑 Backup codes
One-time recovery codes if you lose your phone or authenticator access.
- Each code works once
- Store securely offline
- Backup message auto-deletes after ~60s