Now a short/long term fix for comment spam in the game section and Roblox have solved long awaited updates to the website.
Check spam folder?
Edit: And to clarify, you don’t get an email just for turning it on. You only get an email if you log in from a new device, or out and back in. We need to improve the message on that page.
1 Like
Same situation as Locard – not seeing any e-mails from ROBLOX. My e-mail is a verified gmail account and I got the success message when I switched 2-step on:
I’m using Chrome with all extensions disabled.
Edit:
“You only get an email if you log in from a new device, or out and back in.”
Oh
Edit2: Yep – working as expected:
3 Likes
@ReeseMcBlox I think toggling 2-step should require the user to enter their password similarly to changing passwords/e-mails.
4 Likes
Pin a post in Let’s make a Deal as well @InceptionTime, please, because people have lost a lot of virtual wealth without access to things like this!
2 Likes
We are going to add more security steps to turning it off and on, and changing the delivery method. For now, the “hacker” can turn 2SV off and on, but has to know the password to change the email address. That doesn’t help people who have their email accounts stolen, but it is something until we add the further steps.
9 Likes
Woohoo! Thank you!
If I have any feedback, it’s that I would feel more comfortable if the code was sent to my phone!
1 Like
soonTM!
3 Likes
Good idea. But for now you can kind of do it.
- Enable ROBLOX Email 2-factor
- Enable SMS 2-factor on your email
- You now have 4-factor authentication on your ROBLOX account
( ▀ ͜͞ʖ▀)
7 Likes
2 Likes
It’s more that for whatever reason, I trust a text message reaching my phone more than an email reaching my inbox. Whether my inbox was breached or not.
Not to mention the convenience of just looking down at your phone to find the code rather than another tab.
I assume this doesn’t protect against someone stealing your .ROBLOSECURITY? basically ip-based protection
I’d find it far more convenient to simply open another tab than to get out my phone.
YAY! Really happy this was released!
Let’s celebrate Definitely Tuesday 
When SMS verification comes …
(but hopefully we will get Google Authenticator/Authy support too)
Can I set the 2-step delivery email to something else? (send it to another email instead of my main account email) for increased security.
So does this prevent people from getting into my account if they steal my cookie?
Install pushbullet or something. It syncs all notifications to your computer.
I know this an old thread but I’m digging it up with purpose. I’d like to re-suggest the following, I really want to have the best security on my account. After a few unfortunate security scares and now ROBUX value £ has been increased it’s more important than ever to keep our accounts safe. An important motto I learnt from security experts that have done talks in my college lessons
The best security is annoying but safest
I wouldn’t mind making my account as secure as possible and having the best things in place (max sessions, login attempts, escrow items, etc)