Does Open Science Framework (OSF) support 2FA?

How to enable 2FA on Open Science Framework (OSF)

1. Sign in to your Open Science Framework (OSF) account.
2. Open Account settings → Security (the exact path varies; see the official docs link above).
3. Choose your preferred method from the list — TOTP and hardware keys are the recommended options.
4. For TOTP: scan the QR code with Kaito or your authenticator app of choice. Verify the first 6-digit code before saving.
5. Save the recovery codes somewhere safe — they're your last resort if you lose your authenticator and your hardware keys.

Sharing Open Science Framework (OSF) 2FA with a team (with Kaito)

Kaito gives you a vault for shared TOTP and a real-time inbox for shared SMS, with per-token group permissions and an audit log on every code view. To share Open Science Framework (OSF) access with your team:

1. In Kaito, go to Tokens → New and add the Open Science Framework (OSF) 2FA seed (or scan the QR).
2. Permission the token to a group: code-only for most teammates, full-seed only for the admins who would handle rotation.
3. Stream the audit log to your SIEM if you want a complete record of which team members generated codes for Open Science Framework (OSF) and when.

Note: Open Science Framework (OSF)'s terms on account sharing are unclear or grey-area. Many teams share access in practice; doing so via Kaito gives you a clean audit trail if it ever becomes a question.

Frequently asked questions