Description

A FREE & EASY TO USE TWO-FACTOR AUTHENTICATION PLUGIN FOR WORDPRESS

Add an extra layer of security to your WordPress website login page and its users. Enable two-factor authentication (2FA), the best protection against users using weak passwords, and automated password guessing and brute force attacks.

Features | Getting Started | More Info

Use the WP 2FA plugin to enable two-factor authentication for your WordPress administrator user, and to enforce your website users, or some of them to use 2FA. This plugin is very easy to use. It has wizards with clear instructions, so even non technical users can setup 2FA without requiring technical assistance.

Maintained & Supported by WP White Security

WP White Security builds high-quality niche WordPress security & admin plugins such as Password Policy Manager, a plugin with which you can ensure all your users use strong passwords.

Browse our list of WordPress plugins that can help you better manage and improve the security of your WordPress websites and users.

WP 2FA Key plugin features & capabilities

Free Two-factor authentication (2FA) for all users
Supports TOTP (code from 2FA apps like Google Authenticator and Authy) and OTP (email based codes)
Supports 2FA backup codes
Very easy to use and wizard driven
Use policies to enforce 2FA with a grace period or require your users to instantly setup 2FA upon login
Protection against automated password guessing and dictionary attacks

FREE Plugin Support

Support for the WP 2FA plugin is available for free via:

For any other queries, feedback, or if you simply want to get in touch with us please use our contact form.

From within WordPress

Visit ‘Plugins > Add New’
Search for ‘WP 2FA’
Install & activate the WP 2FA from your Plugins page.

Manually

Download the plugin from the WordPress plugins repository
Unzip the zip file and upload the wp-2fa folder to the /wp-content/plugins/ directory
Activate the WWP 2FA plugin through the ‘Plugins’ menu in WordPress

Screenshots

The first-time install wizard allows you to setup 2FA on your website and for your user within seconds.
The wizards make setting up 2FA very easy, so even non technical users can setup 2FA without requiring help.
You can require users to enable 2FA and also give them a grace period to do so.
Users can also use one-time codes via email as a two-factor authentication method.
You can use policies to require users to instantly set up and use 2FA, so the next time they login they will be prompted with this.
It is recommended for all users to also generate backup codes, in case they cannot access the primary device.
In the user profile users only have a few 2FA options, so it is not confusing for them and everything is self explanatory.
The plugin blocks the accounts of users who are required to have 2FA but fail to enable it within the grace period, so they do not jeopardize the security of your website.

Reviews

mudithaguna August 29, 2021

got locked out after installing this plugin.

hessi2 August 20, 2021

Good plugin, which as a free version already brings basic features that others have to pay dearly. Even the reading of the master key is possible in a roundabout way, the fast support helps you with this problem. Top!

jfederer August 16, 2021

This 2FA works as advertised. When I had an unusual security issue the support was prompt and effective. Recommended.

ecsio August 12, 2021

I was looking for an up to date plugin to allows for 2FA on a website where standard users have no access to the backend, this plugin fit the bill perfectly. Support staff are also helpful, quick to respond and knowledgeable.

Jasnick August 12, 2021

As I did not want to use Google Authenticator with SiteGround, I needed a 2FA plugin and this one does an excellent job. I am using it with LastPass Authenticator and it works very well.

Olivia August 11, 2021

Had an unusual bug with the plugin on multiple sites, the support team were quick and helpful in getting it resolved!

Read all 57 reviews

Contributors & Developers

“WP 2FA – Two-factor authentication for WordPress” is open source software. The following people have contributed to this plugin.

“WP 2FA – Two-factor authentication for WordPress” has been translated into 6 locales. Thank you to the translators for their contributions.

Translate “WP 2FA – Two-factor authentication for WordPress” into your language.

Interested in development?

Browse the code, check out the SVN repository, or subscribe to the development log by RSS.

Changelog

1.7.1 (2021-08-11)

Bug fixes
- FIXED: In some scenario accounts were locked out even if the user had 2FA configured.
- FIXED: Error during cron job execution caused by an empty variable.
- FIXED: Small PHP8 error within generate_modal function.
- FIXED: Rendering issue with select box in plugin wizard.
- FIXED: Users unable to close configuration dialog on mobile screens.

Refer to the complete plugin changelog for more detailed information about what was new, improved and fixed in previous version updates of WP 2FA.

WordPress.org

WP 2FA – Two-factor authentication for WordPress

Description