Google Authenticator generates a six to eight-digit one-time passcode that changes every 30 seconds. To set it up, users need to link their account with the Authenticator app via a QR code or a secret key. Once synced, the app will generate the time-based codes required for logging in, ensuring that only someone with access to the physical device can complete the authentication process.