Protect your Ubiquity account with two-factor authentication (2FA), combining your password with a second layer of identity verification. Please review the following FAQs to learn how to manage, secure, and recover your account.
Ubiquity requires two-factor authentication to protect your account from unauthorized logins. 2FA adds a second layer of security beyond your password, keeping your retirement savings safe. It is a mandatory feature and cannot be disabled.
No. To protect against the increasing risks of unauthorized access, 2FA is a mandatory security feature for all Ubiquity accounts and cannot be disabled.
If you have not set up 2FA on your account, log in to your Ubiquity account with your password, where you will be prompted to choose a verification method. You can select one of the following options:
Authenticator App (Most Secure) — Download a supported authenticator app (Twilio Authy, Google Authenticator, or Microsoft Authenticator) and pair it with your Ubiquity account.
Text Message (SMS) — Receive a one-time security code via text to your mobile number.
Voice Call — Receive a one-time security code via phone call.
Select your preferred method and follow the on-screen instructions to complete the setup. You can update your 2FA method at any time by navigating to your Profile page after logging in.
If you do not have a mobile phone, you may be able to use Twilio Authy, Google Authenticator, or Microsoft Authenticator installed on an iOS or Android tablet. Note that landline numbers and VOIP/prepaid numbers are not supported for SMS or Voice Call verification. If you need help finding a solution that works for your situation, contact our support team at (855) 401-4357.
Email is no longer supported as a 2FA method. If you currently have email configured, you will see an “UNAVAILABLE” badge next to it on your Profile page, along with the following message:
“Email is no longer supported as a 2FA method. Please update to a supported option (Authenticator App recommended) to keep your account secure.”
You can continue using email temporarily while we transition affected users to a new method. We recommend updating to an Authenticator App as soon as possible for the strongest account protection.
If your username is not your email address, it will need to be updated before completing the 2FA setup. Please contact us for assistance at (855) 401-4357.
There are a few reasons this may happen. 1. Short codes are blocked. Verification codes are sent via short codes, which may be blocked by your carrier.
1. Short codes are blocked. Verification codes are sent via short codes, which may be blocked by your carrier. T-Mobile, AT&T, or Verizon users: Contact your carrier to unblock short codes.
2. You entered a landline number. Landline numbers cannot receive text messages. Contact our support team at (855) 401-4357 if you need to update your number to one that can receive text messages.
3. Your phone number was entered incorrectly. Contact our support team at (855) 401-4357 to correct it.
4. You have a shared login. If someone else sets up 2FA on your account using their phone number, contact (855) 401-4357.
Nothing happens when I enter the code. This may be caused by browser settings. Try switching to Chrome, which is the recommended browser for myubiquity.com.
“Token is invalid or expired” message. Codes expire quickly for security purposes. Request a new code and enter it promptly. If you continue to experience issues, contact (855) 401-4357.
There are a few reasons this may happen.
1. Shared login. If someone else has your login credentials, a code will be sent when they attempt to access your account. For security, each user should have their own individual login.
2. Data aggregators. If you have linked your account to a service like Mint, Personal Capital, or Envestnet/Yodlee, these apps may periodically attempt to access your account to refresh your balance, which can trigger a 2FA code. Ubiquity does not send unprompted 2FA notifications — a code is only generated when a login attempt occurs from a new device or IP address, or after 31 days since your last verification.
If neither scenario applies, contact us at (855) 401-4357 to verify your account security.
Your router may be dynamically generating a new IP address throughout the day. For security purposes, a new 2FA verification is required each time your IP address changes.
The option to change your verification method is no longer available during the login process. To update your 2FA method, complete your login first and then navigate to your Profile page. From there, you can select a new verification method and save your changes.
If you have lost access to your phone or cannot receive verification codes, please contact our support team at (855) 401-4357 for assistance. Have an alternative verification method ready if possible.
Not necessarily. The phone number used for 2FA may differ from the contact phone number listed on your account profile. You can update your contact phone number by editing your profile, but to change your 2FA phone number, please contact our support team at (855) 401-4357.
No. International phone numbers are not supported at this time.
To strengthen the security of your retirement savings, 2FA is now required when submitting any employee-initiated loan or withdrawal request. After clicking Submit, you will be prompted to enter a verification code. Once entered correctly, your request will be successfully submitted.
If you exceed the allowed number of incorrect code attempts, your submission will be temporarily blocked, and you will see the following message:
“For your security, this transaction has been temporarily blocked due to multiple incorrect security code attempts. Please try again in 10 minutes.”
Any additional submission attempts during this 10-minute window will also be blocked. Once the 10-minute period has passed, you can try again.
Data aggregation apps require your username and password to access linked accounts. Because Ubiquity requires 2FA, some aggregators that do not support 2FA may be unable to sync your account automatically.
Contact the support team at your data aggregation app and request that they add Ubiquity to their list of supported accounts.
You may need to manually re-sync by logging into your aggregation app and completing the full Ubiquity login process, including 2FA verification. For example, in Mint, look for an alert indicating that your account needs attention, then follow the prompts to log back in through the app.
