Two-factor authentication plugin for WordPress

Statistics show that traditional logins are too weak, due to the sharp increase & success of automated password attacks. By adding 2FA you add an additional layer of security to your login pages.

The WP 2FA plugin is very easy to use and wizard driven. Therefore you and your users do not have to be tech gurus to setup 2FA. All can be done within just seconds.

The plugin supports several different 2FA protocols, giving your website users the flexibility to select the method that fits their requirements without hindering their productivity.

WP 2FA supports a wide variety of 2FA apps. It supports Google Authenticator, Authy, FreeOTP, Duo Security and several other popular 2FA apps right out of the box.

With WP 2FA plugin you can enable policies to make two-factor authentication for all your users, store customers, & website members compulsory, so no account is unprotected.

The plugin allows you to give your users a grace period when you require them and enforce 2FA, so they can do it at their convenience without requiring technical assistance.

If you do not want to allow users a grace period, you can always require them to instantly setup and use 2FA, otherwise they won't be able to login to your website.

When users do not configure 2FA within the configured grace period, they are not allowed to login until they configure 2FA, so not to jeopardize the security of your website.

Use the WP 2FA plugin to enable two-factor authentication on your multisite network. You can also use policies to make 2FA compulsory, network-wide for all or a selection of users and roles.

Users do not need to access the WordPress dashboard. If you use custom user profile pages on your eCommerce shop or membership site, users can still easily setup 2FA.

The WP 2FA plugin has out-of-the-box support for custom login pages and post login redirects. So if you use any, you can still add 2FA without the need to customize your setup.

All the email templates the plugin uses are fully editable. On top of that, every individual email can be disabled (and re-enabled), and all other email settings are fully configurable.

With a more secure WordPress authentication mechanism your team can work and access the WordPress dashboard safely and securely from anywhere and any device.

Around 40% of helpdesk calls in the industry are for password resets. With easy to follow wizards and backup codes, your website users no longer need to call helpdesk.

Identify and cardholder thefts are on the rise year on year. Help your e-commerce store customers or membership site members keep their accounts and personal data secure.

With two-factor authentication on your website malicious attackers cannot hijack your website’s user accounts, even if they guess their username and passwords.