Apple is expanding the reach of its two-factor authentication beyond iTunes and iCloud to include its iMessage and FaceTime communications platforms. Here’s what it means and how it can protect users.

If you’re already logged into FaceTime or iMessage on your device, not much will change. But if you log out then attempt to log back in or happen to sign into either service on a different device, you’ll need to enter a second security code sent to a trusted device in addition to the usual username and password to proceed.

This, of course, is assuming you’ve enabled two-factor authentication.

The addition comes just one month after blogger Dani Grant reminded us that most of Apple’s services still weren’t protected by the double layer of protection even after the embarrassing iCloud celebrity photo hack.

With just a username and password, Grant demonstrated how easy it’d be to impersonate someone sending iMessages from their account, see someone’s billing address, credit card type, the last four digits of said credit card, their phone number and what app purchases someone has made.

The extra layer of security is a welcomed addition but it’ll do no good unless you actually enable it. Apple has a complete FAQ on the matter that covers what it is, why you should use it and more importantly, how to set it up.