diff --git a/app/api/views/auth_mfa.py b/app/api/views/auth_mfa.py
index ddf66251..aa770ca4 100644
--- a/app/api/views/auth_mfa.py
+++ b/app/api/views/auth_mfa.py
@@ -55,7 +55,7 @@ def auth_mfa():
         )
 
     totp = pyotp.TOTP(user.otp_secret)
-    if not totp.verify(mfa_token):
+    if not totp.verify(mfa_token, valid_window=2):
         send_invalid_totp_login_email(user, "TOTP")
         return jsonify(error="Wrong TOTP Token"), 400
 
diff --git a/app/auth/views/mfa.py b/app/auth/views/mfa.py
index af915134..80dcb0bf 100644
--- a/app/auth/views/mfa.py
+++ b/app/auth/views/mfa.py
@@ -67,7 +67,7 @@ def mfa():
 
         token = otp_token_form.token.data.replace(" ", "")
 
-        if totp.verify(token) and user.last_otp != token:
+        if totp.verify(token, valid_window=2) and user.last_otp != token:
             del session[MFA_USER_ID]
             user.last_otp = token
             Session.commit()