Two factor authentication means that, in order to access a website, you need your password and a key texted to your phone(or a device that generates a one time password). The idea is, someone can steal your password pretty easily, but it’s harder for them to steal your password and your phone, so if you can prove a user has both of those things, it’s likely that they’re legitimate.

Not every website has a system set up to do this, so that’s why it doesn’t work everywhere.