Facebook Security Settings Guide For Web Browser

You may instead want to read the security guide if you are using Facebook on the mobile app
Facebook Security Mobile.png

In this guide we will demonstrate step-by-step how to go through all the detailed stages on making your Facebook account truly secure.


Regardless of if you are setting up a new account or wanting to make changes to a current account, follow these steps right from the beginning.


If you are setting up a new account, once you have signed up for your account, and before you upload anything, let’s go into your settings and change some privacy options. It is better to upload information to your account after you make sure the information you upload is private in the first place.


In this walkthrough, we are starting with a fresh new account. If you are looking to change the settings on an account that you have used for a long time, that’s ok! All the setting are the same.

Step 1

When logged into your Facebook account, begin by select the down arrow in the top right corner.

Step 2

Select “Settings” from the pop down menu.

Facebook Security Web Step 2.jpg

Step 3

From your general settings page, navigate to “Security and Login.”

Facebook Security Web Step 3.jpg

Step 4

We will be spending the entirety of this guide in this settings area.

Facebook Security Web Step 4.jpg

Step 5

The first section to look at is “Where You’re Logged In.” The data present here informs you on what device you are currently logged in to your Facebook account with. If you have any concern someone has remotely hacked your account, take a look here. To remotely log your account off of a particular device, select the options icon (three vertical dots). 

Facebook Security Web Step 5.jpg

Step 6

You can report a device as being unauthorized, or simply remotely log out.

Facebook Security Web Step 6.jpg

Step 7

The first and strongest account security feature you need to implement is a strong password.

Facebook Security Web Step 7.jpg

Step 8

Review your current password and ensure you have at least 6 characters in your password with at least one number (12345), uppercase (ABCD), lowercase (abcd), and symbol (#$%@).

Facebook Security Web Step 8.jpg

Step 9

We recommend to not use Facebook’s “Log in with your profile picture” future. Make sure it is turned off. Select the “edit” button.

Facebook Security Web Step 9.jpg

Step 10

Select “Turn off profile picture login.”

Facebook Security Web Step 10.jpg

Step 11

One of the best security features you can use on any account is two-factor authentication. Select “edit” next to “Use two-factor authentication.”

Facebook Security Web Step 11.jpg

Step 12

Select “Get Started.”


Two-factor authentication (2FA) will send a verification code when an attempt is made to log into your account from a new device or location. You will need to provide both your password and a unique code sent to you. You will not need to enter a 2FA code every time you log into your account.

Facebook Security Web Step 12.jpg

Step 13

You will need to enter your password to confirm that it is indeed you who is accessing your account.

Facebook Security Web Step 13.jpg

Step 14

There are two ways you can use two-factor authentication: text message or an authentication app. This guide will show you both ways, first text. Step 21 for “Authentication App.”




Select “Text Message” and then the “Next” button.

Facebook Security Web Step 14.jpg

Step 15

Enter your phone number and then select “Next.”

Facebook Security Web Step 15.jpg

Step 16

You will then get a text sent to your phone. Enter the code in the text on screen, then select “Next.”

Facebook Security Web Step 16.jpg

Step 17

Select “Finish.”

Facebook Security Web Step 17.jpg

Step 18

In the rare case you may not have your phone and need to access your Facebook account, setup “Recovery Codes.” These are one-time codes you can use instead of getting a text message. Having these are good if you lose your phone, break it, or get a new phone number and need access to your Facebook account.

Facebook Security Web Step 18.jpg

Step 19

If this is not your first time setting up recovery codes, you may already see a list of codes (step 20). Select “Get Codes.”

Facebook Security Web Step 19.jpg

Step 20

Copy, screenshot, write down, and print these codes then place them in a safe place for if you may need them one day.

Facebook Security Web Step 20.jpg

Step 21

You can also use an authentication app instead of texts. This is recommended if you share a Facebook account with anyone else.

Facebook Security Web Step 21.jpg

Step 22

You can scan the QR code (left) or enter the code manually (right). See the next steps on how these work.

Facebook Security Web Step 22.jpg

Step 23

We at The White Hatter Team like using the Google Authenticator app, but you can use another if you prefer. For this app to add another account, select the plus (+) icon.

Facebook Security Web Step 23.jpg

Step 24

Here is your choice to scan the QR code or manually enter. The QR code is easier.

Facebook Security Web Step 24.jpg

Step 25

If scanning the QR code, aim your camera so the QR is in the green box (left).


If you are entering the code manually, follow the instructions (right).

Facebook Security Web Step 25.jpg

Step 26

Once your account is connected to the app, the 6-digit code will change every minute. If you are prompted for two-factor authentication when logging into your Facebook account, enter the current code.

Facebook Security Web Step 26.jpg

Step 27

You will be asked after you setup your Facebook account by the Authenticator app to enter the current code.

Facebook Security Web Step 27.jpg

Step 28

Make sure you have security alerts enabled on your account. Select the “Edit” button next to “Get alerts about unrecognized logins”

Facebook Security Web Step 28.jpg

Step 29

Ensure you have “Get notifications” on for each alert method.

Facebook Security Web Step 29.jpg

Step 30

In case you get locked out of your account, you can preselect 3-5 friends to help you log into your account.

Facebook Security Web Step 30.jpg

Step 31

You will have a pop-up box describing what this setting does. Select “Choose Trusted Contacts.”

Facebook Security Web Step 31.jpg

Step 32

Enter the names of a minimum of 3 friend in your friends list, then select “Confirm.”

Facebook Security Web Step 32.jpg

Step 33

The last option in this guide is just for reference. If you ever get an email from Facebook you think is fake, you can go to the “See recent emails from Facebook settings.” This will list all the official Facebook emails that were sent to you. Select “view.”

Facebook Security Web Step 33.jpg

Step 34

Here you can view all the Facebook emails sent to your email account.

Facebook Security Web Step 34.jpg