diff --git a/Kernel/GenericInterface/Operation/Session/Common.pm b/Kernel/GenericInterface/Operation/Session/Common.pm
index dc80c501b51..f01099a1a9a 100644
--- a/Kernel/GenericInterface/Operation/Session/Common.pm
+++ b/Kernel/GenericInterface/Operation/Session/Common.pm
@@ -48,9 +48,10 @@ sub CreateSessionID {
     my $User;
     my %UserData;
     my $UserType;
-
+    
     # get params
     my $PostPw = $Param{Data}->{Password} || '';
+    my $PostTwoFactorToken = $Param{Data}->{TwoFactorToken} || '';
 
     if ( defined $Param{Data}->{UserLogin} && $Param{Data}->{UserLogin} ) {
 
@@ -61,6 +62,7 @@ sub CreateSessionID {
         $User = $Kernel::OM->Get('Kernel::System::Auth')->Auth(
             User => $PostUser,
             Pw   => $PostPw,
+            TwoFactorToken => $PostTwoFactorToken,
         );
         %UserData = $Kernel::OM->Get('Kernel::System::User')->GetUserData(
             User  => $User,
@@ -77,6 +79,7 @@ sub CreateSessionID {
         $User = $Kernel::OM->Get('Kernel::System::CustomerAuth')->Auth(
             User => $PostUser,
             Pw   => $PostPw,
+            TwoFactorToken => $PostTwoFactorToken,
         );
         %UserData = $Kernel::OM->Get('Kernel::System::CustomerUser')->CustomerUserDataGet(
             User  => $PostUser,
diff --git a/Kernel/GenericInterface/Transport/HTTP/REST.pm b/Kernel/GenericInterface/Transport/HTTP/REST.pm
index fe447ee3bd3..d50684e7724 100644
--- a/Kernel/GenericInterface/Transport/HTTP/REST.pm
+++ b/Kernel/GenericInterface/Transport/HTTP/REST.pm
@@ -229,6 +229,7 @@ sub ProviderProcessRequest {
         HTTP_X_OTRS_HEADER_SESSIONID         => 'SessionID',
         HTTP_X_OTRS_HEADER_PASSWORD          => 'Password',
         HTTP_X_OTRS_HEADER_IMPERSONATEASUSER => 'ImpersonateAsUser',
+        HTTP_X_OTRS_HEADER_TWOFACTORTOKEN    => 'TwoFactorToken',
     );
 
     HEADER: