Updates to the login experience for individuals

It is now easier for you to log in to view your account information on principal.com. And, we updated how we secure your account, so we can continue to keep your information safe and secure.

We simplified how everybody logs in

You no longer need to choose a login type when logging into principal.com. You simply click log in and enter your username and password.

We enhanced how we make sure you are really you

We enhanced 2-factor authentication. While you may have already registered your mobile phone and/or your email address for 2-factor authentication, email will no longer be an option for receiving verification codes. Why? It’s the least secure method, which also means it’s the easiest way for cybercriminals to intercept a verification code and use it to illegally access your account. In addition to text, we are offering 2 new options for you to choose from, including voice call or an authenticator app.

So, what does it really mean?

If you previously set up 2-factor authentication and registered both a mobile number and personal email, personal email has automatically been removed from your settings as an option for receiving verification codes. Keep in mind, we still have your mobile number registered to receive verification codes by text and you’ll be able add voice call or an authenticator app as alternate or back-up options. 

If you previously set up 2-factor authentication and only registered an email address, you will no longer be able to receive verification codes by email and will need to register one of the other options, including text, voice call or an authenticator app.  

We are removing email as an option, as it’s the least secure method for receiving verification codes. That also means it’s the easiest way for cybercriminals to intercept a verification code and use it to illegally access your account.  

If you haven't set-up 2-factor authentication yet, the next time you log in you will need to register to receive verification codes by text, voice or an authenticator app.  We will send you a verification code in certain situations, such as if suspicious activity has been identified, if you forgot your password or you are logging in from a computer or device you’ve never used to log in before.  If you register multiple options, you will choose which way you want us to send the verification code each time it’s needed.  Verification codes will replace online security questions and answers. 

You can choose to “Remember my device” on up to 5 different device(s). Once you do this, you can go 90 days before being prompted to enter a verification code again, unless, of course, unusual activity is detected.

What the heck is an authenticator app?

An authenticator app is a third-party app that you can download and install on your mobile device or computer. If you register an authenticator app during the set-up process, you can receive verification codes through the app. There are a lot of authenticator apps to choose from, but most of them should be compatible with your Principal account. If you’re not sure, here are a few options to consider:

  • Mobile app: Microsoft Authenticator, Google Authenticator, Authy, or LastPass.
  • Desktop app: Authy

What if I need help?

If you have questions or need help setting-up 2-factor authentication, please call us at 800-986-3343.