How to Add Two-Factor Authentication in WordPress (Free Method) – Website Tips

Curated by WorkingFromHome

This article is an excerpt from the original article found in the Read More link – please follow for full article.

Have you noticed how popular sites like Facebook and Google are now giving you the ability to add two-factor authentication to improve security?

Well, now you can add two-factor authentication to your WordPress site. This ensures maximum security for your WordPress site and all registered users.

In this article, we will show you how to add two-factor authentication for WordPress using both Google Authenticator as well as SMS text message.

Why Add Two-Factor Authentication for WordPress Login?

One of the most common tricks hackers use is called brute force attacks. By using automated scripts, hackers try to guess the right username and password to break into a WordPress site.

If they steal your password or accurately guess it, then they can infect your website with malware.

One of the easiest ways to protect your WordPress website against stolen passwords is to add two-factor authentication. This way even if someone stole your password, then they will need to enter a security code from your phone to gain access.

There are multiple ways to set up 2-step login in WordPress. However, the most secure and easier method is by using an authenticator app. Simply click the links below to jump to the method you prefer:

Let’s take a look at how to easily add two-factor verification to your WordPress login screen for free.

Method 1. Adding Two Factor Authentication in WordPress

This method is easier and recommended for all users. It is flexible and allows you to enforce two-factor authentication for all users.

First, you need to install and activate the WP 2FA – Two-factor Authentication plugin. For more details, see our step by step guide on how to install a WordPress plugin.

Upon activation, you need to visit the Users » Your Profile page and scroll down to the ‘WP 2FA Settings’ section.

From here, you need to click on the ‘Configure Two-factor authentication (2FA)’ button to launch the setup wizard.

The plugin will now ask you to choose an authentication method. It comes with two options:

  • One-time code generated with your app of choice (Recommended)
  • One-time code sent to you over email

We recommend that you choose the authentication via app method, as it is more secure and reliable. Then click on the Next button to continue.

The plugin will now show you a QR code which you need to scan using an authenticator app.

What is an Authenticator App?

An authenticator app is a smartphone app that generates a temporary one-time password for the accounts that you save in it.

Basically, the app and your server use a secret key to encrypt information and generate one-time codes that you can use as the second layer of protection.

There are many such apps available for free.

The most popular one is Google Authenticator, however, it is not the best one. While it works great, it does not provide a backup that you can use in case your phone is lost.

We recommend using Authy, since it is an easy-to-use and free app that also allows you to save your accounts on the cloud in an encrypted format. This way if you lose your phone, then you can simply enter your master password to restore all your accounts.

Other password managers like LastPass, 1password, etc all come with their own version of authenticator which are all better than the Google Authenticator since they allow you restore keys.

For the sake of this tutorial, we’ll be using Authy. You can follow our tutorial using a different app if you want, since they all work the same way.

First, click on the Add account button in your authenticator app:

The app will then ask permission to access the camera on your phone. You need to allow this permission so that you can scan the QR code shown on the plugin’s settings page.

The authenticator app will now save your website account, and it will start showing a one-time password that you can use to log in.

On the plugin’s setup wizard, click on the “I’m Ready” button to continue.

The plugin will now ask you to verify your one-time password. Simply click on your account in the authenticator app, and it will show you a six-digit one-time password that you can enter.

After that, the plugin will give you an option to generate and save the backup codes. These codes can be used in case you don’t have access to your phone. You can print these backup codes and put them somewhere safe.

After that, you can exit the setup wizard.

Setting WP 2-FA Two Factor Login for All WordPress Users

If you run a multi-user WordPress website such as a membership site, then the plugin also allows you to enable or enforce two-factor authentication for all users on your site.

Simply head over to Settings » Two-factor Authentication page to configure the plugin settings.

The plugin allows you to enable two-factor login for all users, make it compulsory for all users, and give users enough time to set it up.

If your WordPress website uses a custom login form page, then you can also create a custom page where users can manage their two-factor authenticator settings without accessing the WordPress admin area.

Don’t forget to click on the Save Changes button to store your new settings.

Here is how your default WordPress login screen will ask for the two-factor authentication code after users enter their regular WordPress password.

Method 2. Adding Two Factor Authentication using Two Factor

This method is a little less flexible as it does not allow you to enforce two factor login for all users. Each user will have to set it up on their own and can disable it from their profile.

First, you need to install and activate the Two Factor plugin. For more details, see our step by step guide on how to install a WordPress plugin.

Upon activation, you need to visit the Users » Profile page and scroll down to the Two-Factor Options section.

From here, you need to choose a two-factor login option. The plugin allows you to use email, authenticator app, and FIDO U2F Security Keys methods.

We recommend using the authenticator app method. Simply download an authenticator app like Google Authenticator, Authy, or LastPass Authenticator and scan the QR code shown on the screen.

Once you have scanned the QR code, the app will show you a verification code that you need to enter into the plugin options and click on the S

For the Full Article
You can Find it Here: How to Add Two-Factor Authentication in WordPress (Free Method)

Commentary:
Some handy tips and urls can be found on the complete article.
source – WPBeginner.com

You May Also Like…

How to Set Up a Site Like Teachers Pay Teachers with WordPress – Website Tips

How to Set Up a Site Like Teachers Pay Teachers with WordPress – Website Tips

Do you want to set up a website like Teachers Pay Teachers using WordPress? Teachers Pay Teachers is an online marketplace for educators where they can sell educational resources to other teachers. The platform makes money by selling memberships and taking a small fee on transactions. In this article, we’ll show you how to easily create a website like Teachers Pay Teachers in WordPress. Getting Started with Your Teachers Pay Teachers Like Website To make a Teachers Pay Teachers like website in WordPress, you’ll need a few things to get started. First, you’ll need a domain name (example: wpbeginner.com) and a web hosting account to store your website files. Normally, a domain name will cost you 16.99 per year and web hosting starts at $7.99 per month (paid annually). Now if you are just testing the waters, then this may sound a little expensive. Luckily, Bluehost has agreed to offer…

How to “Easily” Create Custom WooCommerce Thank You Pages – Website Tips

How to “Easily” Create Custom WooCommerce Thank You Pages – Website Tips

Do you want to easily create a custom WooCommerce thank you page? A custom thank you page for order confirmation is a great way to connect with your new customers and even get additional sales. In this article, we’ll show you how to create a custom WooCommerce thank you page, step by step. Why Customize a WooCommerce Thank You Page in WordPress? Creating a custom WooCommerce thank you page gives you a way to connect with your customers when they make a purchase. The order confirmation or thank you page may seem like a small part of your online store, but it can actually be a very valuable part of your sales process. The problem is that default WooCommerce thank you page isn’t really optimized for conversions. This is why smart business owners build a well-designed and high-converting thank you page to replace the default option. There are a lot…

Working From Home TV …

How to Set Up a Site Like Teachers Pay Teachers with WordPress – Website Tips

How to Set Up a Site Like Teachers Pay Teachers with WordPress – Website Tips

Do you want to set up a website like Teachers Pay Teachers using WordPress? Teachers Pay Teachers is an online marketplace for educators where they can sell educational resources to other teachers. The platform makes money by selling memberships and taking a small fee on transactions. In this article, we’ll show you how to easily create a website like Teachers Pay Teachers in WordPress. Getting Started with Your Teachers Pay Teachers Like Website To make a Teachers Pay Teachers like website in WordPress, you’ll need a few things to get started. First, you’ll need a domain name (example: wpbeginner.com) and a web hosting account to store your website files. Normally, a domain name will cost you 16.99 per year and web hosting starts at $7.99 per month (paid annually). Now if you are just testing the waters, then this may sound a little expensive. Luckily, Bluehost has agreed to offer…

Tips to enhance your own website…

How to Set Up a Site Like Teachers Pay Teachers with WordPress – Website Tips

How to Set Up a Site Like Teachers Pay Teachers with WordPress – Website Tips

Do you want to set up a website like Teachers Pay Teachers using WordPress? Teachers Pay Teachers is an online marketplace for educators where they can sell educational resources to other teachers. The platform makes money by selling memberships and taking a small fee on transactions. In this article, we’ll show you how to easily create a website like Teachers Pay Teachers in WordPress. Getting Started with Your Teachers Pay Teachers Like Website To make a Teachers Pay Teachers like website in WordPress, you’ll need a few things to get started. First, you’ll need a domain name (example: wpbeginner.com) and a web hosting account to store your website files. Normally, a domain name will cost you 16.99 per year and web hosting starts at $7.99 per month (paid annually). Now if you are just testing the waters, then this may sound a little expensive. Luckily, Bluehost has agreed to offer…

How to “Easily” Create Custom WooCommerce Thank You Pages – Website Tips

How to “Easily” Create Custom WooCommerce Thank You Pages – Website Tips

Do you want to easily create a custom WooCommerce thank you page? A custom thank you page for order confirmation is a great way to connect with your new customers and even get additional sales. In this article, we’ll show you how to create a custom WooCommerce thank you page, step by step. Why Customize a WooCommerce Thank You Page in WordPress? Creating a custom WooCommerce thank you page gives you a way to connect with your customers when they make a purchase. The order confirmation or thank you page may seem like a small part of your online store, but it can actually be a very valuable part of your sales process. The problem is that default WooCommerce thank you page isn’t really optimized for conversions. This is why smart business owners build a well-designed and high-converting thank you page to replace the default option. There are a lot…

How to Connect Microsoft Outlook to WordPress (Step by Step) – Website Tips

How to Connect Microsoft Outlook to WordPress (Step by Step) – Website Tips

Are you looking for a way to use your Microsoft Outlook account to send emails from your WordPress website? Connecting Microsoft Outlook with WordPress helps improve email deliverability by making sure that your emails reach your subscriber’s inbox, even if you’re sending a lot of them. In this article, we’ll show you step by step how to connect Microsoft Outlook to WordPress. Why Use Microsoft Outlook to Send WordPress Emails? Using Microsoft Outlook is a great option for business owners who regularly use Office 365. You can use your existing account to send emails to your subscribers from your WordPress website. The best part about using Outlook is that it allows you to send a lot of emails at once. You can send up to 10,000 emails per minute, which is a much higher limit than other mailing services. If you have a busy online store, then this will help…

0 Comments

Submit a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.