Two-factor authentication (2FA) is an access control method that requires users to provide two separate forms of authentication before gaining access. It typically involves something the user knows (e.g., password) and something the user has (e.g., smartphone or token).