ArenaArchive › Dashboard › Security & Account Access

Security & Account Access

Manage password access, connected sign-in methods, email change requests, and multi-factor authentication.

Current Session AAL

—

`aal1` means standard login. `aal2` means MFA-verified session.

Next Available AAL

—

If this shows `aal2`, your account is eligible for MFA elevation.

Linked Sign-In Methods

Email, Google, and other linked identities attached to your account.

Change Password

Update the password for your currently signed-in account.

Current Password

New Password

Confirm New Password

Change Email Address

Request an email change. Supabase normally sends confirmation to both the old and new email unless you disable secure email change in Auth settings.

New Email Address

Connected Sign-In Methods

Review identities linked to your account. Manual Google linking requires the Google provider and manual identity linking to be enabled in Supabase.

Connect Google

Add Google as a sign-in method for this same account.

Multi-Factor Authentication

Enroll a TOTP factor with an authenticator app like Google Authenticator, 1Password, or Authy.

MFA Status

Checking your current MFA status...

Enroll TOTP

Create a new authenticator factor and verify it with a 6-digit code.

Notes

This page manages client-side account security actions. To fully enforce MFA for admins or all users, you also need to gate sensitive pages/actions on session assurance level `aal2`.