Configuring two-factor authentication for your WordPress user with WP 2FA
Step 1: Launch the wizard
Launch the two-factor authentication (2FA) wizard by clicking the button Configure 2FA Authentication in the WP 2FA Settings at the bottom of your profile page.
Step 2: Select the 2FA method
There are several different 2FA methods you can use. In the first step of the wizard you select which method you want to use. Note that the website administrators can select which 2FA methods users can use or not use.
Step 3: Configure the selected 2FA method
If you choose the one-time code generated with Google Authenticator app method, you get all the instructions of what you need to do in the second step of the wizard. In short, you have to download the Google Authenticator app, and scan the QR code from the wizard.
If you choose the one-time code sent over email, in the second step of the wizard you can specify a different email address than the one used for your WordPress user where the email should send the code.
Once you are ready from any of the above click I’m Ready and proceed to the last step of the wizard.
Step 4: Verify the 2FA configuration
In the last step you are asked to enter the one-time code sent to you via email, or generated from the Google Authenticator app to verify and finalize the 2FA setup.
Click Finish once you are ready. That is it, you´re all set up now.
Logging in to WordPress with 2FA
Once you have 2FA enabled on your WordPress user, the next time you want to login you have to specify the username, the password, and the one-time code.
Important: Generate the backup codes
When you start using two-factor authentication, it is important to configure the 2FA backup codes. Backup codes are needed in case you cannot access the primary 2FA code-generator. Read Backup codes for 2FA for information on how to create the backup codes and how you can use them.