It's a common scenario: you land in a new country, try to log in to an account, and the two-factor authentication (2FA) text message never arrives. With a data-only eSIM like Bloomy eSIM, you get data connectivity, but you may not be able to receive SMS messages sent to your home phone number. If your accounts rely only on SMS codes, that can leave you locked out while you're away. This guide walks through the 2FA preparations worth doing before you leave — explained simply enough for first-timers. By the end, you'll know exactly where to start.
The short version: Before you travel, (1) list the services where you use SMS-based verification, (2) switch the ones you can to an authenticator app (TOTP), (3) save your backup codes, (4) add a spare email or alternative contact method, and (5) do a test login before departure. With these in place, you can usually still sign in even when SMS doesn't reach you abroad. It's far easier to set all this up while you're somewhere familiar and unhurried (general steps as of June 2026 — each service's settings may change, so always check the official source for the latest details).
What is two-factor authentication? A quick overview
Two-factor authentication (also called 2FA or two-step verification) protects your login by adding a second layer on top of your username and password: a code that only you can receive or generate. There are three common ways to get that code.
- SMS verification: A code is texted to your phone number and you enter it. It's convenient, but it stops working if text messages to your number don't reach you while abroad.
- Authenticator app (TOTP): An app on your phone generates a roughly six-digit code that changes every 30 seconds. It doesn't depend on a phone number or on receiving a text.
- Backup codes (recovery codes): A set of single-use codes issued in advance. They're your last key when neither SMS nor an authenticator app is available.
The travelers who run into trouble abroad are usually the ones relying only on SMS verification. Having more than one way to receive your code is what gives you peace of mind.
Why preparing before you leave matters
There are several reasons text messages may not arrive — or arrive late — when you're abroad. A data-only eSIM isn't designed to receive calls or SMS to a phone number; roaming and network conditions can delay or drop texts; and signal strength and network congestion where you're staying can cause connection quality to vary. These issues are hard to fix once you've already arrived, and if you can't log in, it can hold up everything from confirming hotel and flight bookings to transferring money or using social and messaging apps.
By contrast, switching to an authenticator app or saving your backup codes usually takes just a few minutes to a quarter of an hour while you're still home. That's exactly why doing it before departure — when your connection is stable and support is easy to reach — is the most reliable way to head off problems on the road.
First, check: which services use SMS verification?
The first step is to write down which services send you SMS codes. Because you use them on autopilot, it's easy to blank on the full list when it matters. Common ones include:
- Social media and messaging apps (verifying logins or device changes)
- Email and cloud accounts (tied directly to your messages, photos, and documents)
- Shopping, booking, and ride-hailing apps
- Banking and payment services (these call for especially careful handling)
Anything tied to banking or government services follows its own provider's rules, and whether — and how — you can use it from abroad may differ. Rather than assuming, it's safest to check each provider's latest guidance before you rely on it. If you're prioritizing, start with the accounts that would directly disrupt your trip if you got locked out (email, bookings, social media) — that's the most effective use of limited prep time.
Why switching to an authenticator app (TOTP) gives you peace of mind
In many cases you can use an authenticator app in place of SMS. It generates a roughly six-digit code (TOTP) on your phone that changes every 30 seconds. Because it doesn't depend on a phone number or on receiving a text, you can check the code in an almost-offline way as long as you have data. Most major services support it; you'll usually find the option under settings labeled "Security," "Two-factor authentication," or "Login and security."
The general switching process
Screen names vary by service, but the flow is usually something like this:
- In the service's settings, choose something like "Add authenticator app" or "Authenticate with an app"
- Scan the on-screen QR code with your authenticator app
- Enter the six-digit code shown in the app to activate it
Some services let you keep SMS as a backup even after you switch. Rather than forcing yourself down to a single method, it's better to combine several — for example, an app plus backup codes — so you have more options once you're abroad. Note that some authenticator apps require specific steps to migrate when you change phones, so if you bought a new device just before your trip, it's worth confirming the migration finished.
Pre-travel preparation steps (checklist)
| Step | What to do | Key point |
|---|---|---|
| 1 | List the services that use SMS verification | Rank by priority: banking, social media, email, etc. |
| 2 | Switch the ones you can to an authenticator app | Settings → Security → Two-factor authentication |
| 3 | Save your backup codes | Keep them on paper or in a password manager |
| 4 | Add a spare email or contact method | Set up a way to receive codes other than SMS |
| 5 | Do a test login before departure | Verify it works in airplane mode or on another connection |
That last step — doing a test login before you go — is especially worth it. Confirming while you're still home that you can sign in with your authenticator app takes a lot of the worry out of using it for the first time abroad. Turn off Wi-Fi and try it on mobile data only, or log out and back in, and you'll be checking it under conditions close to the real thing.
Strengths and weaknesses of each method
Every method has things it's good and not so good at. Viewed through the lens of using them abroad, here's how they compare.
| Method | Ease of use abroad | Things to watch for |
|---|---|---|
| SMS verification | May not work if texts to your phone number don't arrive | A data-only eSIM alone may not receive them |
| Authenticator app (TOTP) | Easy to check the code as long as you have data | Requires setup in advance and migration when changing phones |
| Backup codes | Largely unaffected by your connection | Guard against loss or exposure; store them securely |
The ideal is to set things up before departure so that if one method fails, another still gets you in.
Backup codes and an alternative contact method
Most services let you generate "backup codes" (recovery codes) once you enable two-factor authentication. These are your spare key for when neither SMS nor an authenticator app is available. Rather than relying on a screenshot alone, keep them in more than one place — such as on paper and in a password manager. Screenshots can be shared unintentionally through cloud sync, so it pays to be a little careful about where you store them.
It also helps to have a spare email address and a way to reach family or someone you trust, so you can stay calm if something goes wrong. Keep in mind that messaging and calling apps such as WhatsApp can often be used as long as you have a data connection. For situations that genuinely require SMS or a voice call to a phone number, it's worth also looking into a plan that includes a number, or a local SIM, as an alternative. We cover how to think about numbers and SMS in our articles on phone numbers and SMS.
If you still can't authenticate while abroad
Even with preparation, verification sometimes won't go through once you're there. We cover what to do in that specific situation — already abroad and unable to complete SMS verification — in detail in a separate article. Reading it alongside this one makes your options clearer if trouble strikes.
What to Do When SMS Verification Fails Abroad: Data-Only eSIMs and Two-Factor Authentication
If you can't get connected at all, the cause may be your connection settings rather than authentication. In that case, check connection troubleshooting and the setup guide as well. If you're unsure whether your device supports eSIM, take a look at our compatible device check.
Getting your connection ready with Bloomy
Bloomy eSIM is a data-only service. Setting up a stable data connection is the foundation for checking authenticator-app codes and making app-based calls. If you need SMS or voice calls to a phone number, it's wise to consider an additional option alongside it. Please note that connection quality can vary depending on the local network, your device, and the area you're in.
If you'd like to see the eSIM options for your destination, our Bloomy eSIM comparison page lets you find a plan by country, data amount, and number of days. For questions about setup or before you buy, our FAQ is a good place to look too. The plans, prices, and terms actually available can differ by country and region and may change, so please confirm the latest details on the comparison page before purchasing (as of June 2026). Bloomy plans are subject to a fair use policy.
