How to configure 2FA policies to enforce it on website users

You are here:
  • Home
  • WP 2FA
  • How to configure 2FA policies to enforce it on website users

All your WordPress website users should use two-factor authentication (2FA) for it to be an effective security solution. Or at least, users who have privileges to make changes on the website, such as users with administrator, editor and author roles should use 2FA.

With the WP 2FA plugin you can configure policies to make 2FA compulsory. This document explains how you can configure the policies and enforce 2FA on your WordPress website.

Enforce 2FA on all your WordPress site users

Once you install the WP 2FA plugin:

  1. Navigate to Settings > Two-factor authentication in the WordPress dashboard.
  2. Select the option All users in the Enable 2FA on setting.

Two-factor authentication (2FA) policies

  1. Scroll down and configure how long the grace period should be in the Grace period setting. Users have to configure two-factor authentication within this grace period, otherwise they won’t be allowed to login to the website.
  2. Click Save Changes to save the plugin settings.

Once you enable two-factor authentication, your users receive an email and also get a notification when they login to the website, as explained in how can 2FA be enforced on WordPress sites.

Require only WordPress users with a specific role to use 2FA

Once you install the WP 2FA plugin:

  1. Navigate to Settings > Two-factor authentication in the WordPress dashboard.
  2. Select the option Only on users with these roles in the Enable 2FA on setting.
  3. Specify the roles of the users who must enable two-factor authentication and select the role from the auto suggestion.

Enforce 2FA only for users with specific roles

  1. Scroll down and configure how long the grace period should be in the Grace period setting. Users have to configure two-factor authentication within this grace period, otherwise they won’t be allowed to login to the website.
  2. Click Save Changes to save the plugin settings.

Once you enable two-factor authentication, your users receive an email and also get a notification when they login to the website, as explained in how can 2FA be enforced on WordPress sites.

Only require specific WordPress users to use 2FA

Once you install the WP 2FA plugin:

  1. Navigate to Settings > Two-factor authentication in the WordPress dashboard.
  2. Select the option Only on these users in the Enable 2FA on setting.
  3. Specify the usernames of those who must enable two-factor authentication and click on the username in the auto suggestion.

Make 2FA compulsory only for specific users

  1. Scroll down and configure how long the grace period should be in the Grace period setting. Users have to configure two-factor authentication within this grace period, otherwise they won’t be allowed to login to the website.
  2. Click Save Changes to save the plugin settings.

Once you enable two-factor authentication, your users receive an email and also get a notification when they login to the website, as explained in how can 2FA be enforced on WordPress sites.

Do not enforce 2FA on WordPress users

Although it is not recommended, it is also possible to simply not enforce 2FA. This is the default option. When the setting Enable 2FA on is set to Do not enforce 2FA on any users users won’t get any notification to configure and use 2FA. However, users can still configure 2FA from their profile page.

Add an extra layer of security to your WordPress site; download WP 2FA today!