WP 2FA – Two-factor authentication for WordPress

Descripción

A free and easy-to-use two-factor authentication plugin for WordPress

Add an extra layer of security to your WordPress website login pages and protect your users. Enable two-factor authentication (2FA), the best protection against users using weak passwords, automated password guessing, and brute force attacks.

Features | Getting Started | Get the Premium!

Use the WP 2FA plugin to enable two-factor authentication for your WordPress administrator, and to enforce your website users, or users with a specific role to use 2FA. This plugin is very easy to use; everything can be configured via wizards with clear instructions, so even non technical users can setup 2FA without requiring technical assistance.

MAINTAINED & SUPPORTED BY MELAPRESS

Melapress develops high-quality WordPress management and security plugins such as Melapress Login Security, CAPTCHA 4WP, and WP Activity Log, the #1 user-rated activity log plugin for WordPress.

Browse our list of WordPress security and administration plugins to see how our plugins can help you better manage and improve the security and administration of your WordPress websites and users.

WP 2FA key plugin features and capabilities

  • Identificación de dos factores (2FA) gratuita para todos los usuarios
  • Supports multiple 2FA methods
  • An API that allows you to integrate supplementary 2FA methods
  • Universal 2FA app support – generate codes from Google Authenticator, Authy & any other 2FA app
  • Supports 2FA backup methods
  • Wizard-driven plugin configuration & 2FA setup – no technical knowledge required
  • Use 2FA policies to enforce 2FA with a grace period or require users to instantly setup 2FA upon logging in
  • No WordPress dashboard access is required for users to set up 2FA
  • Fully editable email templates
  • Protection against automated password & dictionary attacks
  • Much more

Upgrade to WP 2FA Premium and get even more

The premium version of WP 2FA comes bundled with even more features to take your WordPress website login security to the next level.

With the premium edition of WP 2FA, you get more 2FA methods, 1-click integration with WooCommerce, trusted devices feature, extensive white labeling capabilities, and much more!

Premium features list

Refer to the WP 2FA plugin features and benefits page to learn more about the benefits of upgrading to WP 2FA Premium.

Free and premium support

Support for the free edition of WP 2FA is free on the WordPress support forums. Premium world-class support via one-to-one email is available to the Premium users – upgrade to premium to benefit from priority support.

For any other queries, feedback, or if you simply want to get in touch with us, please use our contact form.

As featured on:

Related links and documentation:

You can find more detailed information about 2FA and its benefits in the links below

Installing WP 2FA

Desde dentro de WordPress

  1. Navigate to ‘Plugins > Add New’
  2. Search for ‘WP 2FA’
  3. Install & activate WP 2FA from your Plugins page

Manualmente

  1. Download the plugin from the WordPress plugins repository
  2. Unzip the zip file and upload the folder to the /wp-content/plugins/ directory
  3. Activate the WP 2FA plugin through the ‘Plugins’ menu in WordPress

Capturas

  • El asistente de primera instalación te permite configurar 2FA en tu web y para tu usuario en cuestión de segundos.
  • Los asistentes hacen muy fácil la configuración de 2FA, de forma que, incluso los usuarios no técnicos, puedan configurar 2FA sin necesidad de ayuda.
  • Puedes obligar a los usuarios a activar 2FA y también darles un período de gracia para que lo hagan.
  • Los usuarios también pueden usar códigos de un solo uso por correo electrónico como un método de identificación de dos factores.
  • Puedes usar políticas para obligar a los usuarios a configurar y usar 2FA inmediatamente, por lo que se les pedirá que lo hagan la siguiente vez que accedan.
  • You can give users a grace period until they configure 2FA. You can also specify what should the plugin do once the grace period is over.
  • Se recomienda a todos los usuarios que también generen códigos de respaldo, para el caso de que no puedan acceder en el dispositivo principal.
  • En el perfil de usuario, los usuarios solo tienen unas pocas opciones de 2FA, por lo que no les es confuso y todo se explica por sí mismo.

FAQ

Does the plugin send any data to Melapress?

No, the plugin does not send any data to us whatsoever. The only data we recieve is license data from the premium edition of the plugin.

Does the plugin receive updates?

We update the plugin fairly regularly to ensure the plugin continues to run in tip-top shape while adding new features from time to time.

Can I get support if I get stuck?

Support for the free edition of the plugin is provided only via the WordPress.org support forums. You can also refer to our support pages for all the technical and product documentation.

If you are using the Premium edition, you get direct access to our support team via one-to-one email support.

How can I report security bugs?

You can report security bugs through the Patchstack Vulnerability Disclosure Program. Please use this form. For more details please refer to our Melapress plugins security program.

Reseñas

18 de noviembre de 2024
I am using this plugin for years and it is great. No problems even when I deactivate it for research reasons and activate it again. My wish is that passkeys are integrated in the free versions. Plugins which add this function to the website do not work well together with this one here in my experience.
26 de septiembre de 2024
Very nice plugin with many settings. I also had to contact support via email (because of something I did incorrectly, as it turned out). Support response was very fast with detailed troubleshooting solutions, and friendly. Thank you
24 de septiembre de 2024
I haven’t had one problem on any of the sites I have installed the free version on. Technical support is swift and friendly. Overall very impressed with the plugin.
18 de septiembre de 2024
it works great and support was prompt in helping me sort out some wording customizations.
20 de agosto de 2024
After researching several 2FA plugins, we chose this one based on strong recommendations and its extensive range of customisable features, including role-specific 2FA methods and custom email templates. We encountered a minor performance issue due to an edge case involving a specific combination of plugins on our site, but the support team was excellent and resolved the issue promptly.
25 de julio de 2024
The application is complete with lot of option and services for 2FA.The Entreprise Plan allows you to customize even the smallest dialog boxes and translate them.The support is kind and speed to answer your questions and solve your problems.
Leer todas las 142 reseñas

Colaboradores y desarrolladores

«WP 2FA – Two-factor authentication for WordPress» es un software de código abierto. Las siguientes personas han colaborado con este plugin.

Colaboradores

«WP 2FA – Two-factor authentication for WordPress» ha sido traducido a 11 idiomas locales. Gracias a los traductores por sus contribuciones.

Traduce «WP 2FA – Two-factor authentication for WordPress» a tu idioma.

¿Interesado en el desarrollo?

Revisa el código , echa un vistazo al repositorio SVN o suscríbete al registro de desarrollo por RSS.

Registro de cambios

2.8.0 (2024-07-17)

  • New features

    • Out of the box support for Yubico – use any YubiKey hardware key by Yubico as a 2FA method to log in to your WordPress website.

      • Plugin & functionality improvements
    • Bumped up the minimum supported PHP version from 7.2 to 7.3.
    • Updated a number of strings in the settings + improved help text.
    • The names of debug log file in uploads directory are now randomized.
    • Updated the default text in different sections of the wizard to simplify things and improve UX.
    • Adjusted the order in which the 2FA methods are listed.
    • Updated the features’ page in the plugin – added the new features etc.
    • Updated all UTM parameters in the plugin’s URLs and links.

      • Bug fixes
    • Fixed: PHP fatal error in class-email-wizard-steps.php in some edge cases.
    • Fixed: Apostrophe character shows up as ASCII in email subject.
    • Fixed: Error with importing plugin’s settings from one website to another in some edge cases.
    • Fixed: The grace period expiration setting did not have a default value / setting.
    • Removed reference to Premium backup methods in the free edition’s wizard.
    • Fixed: Redirecting to frontend 2FA page without permalinks set up does not work.
    • Fixed: Some user profile 2FA buttons were not functioning properly when used on mobile.
    • Fixed: Data was not always / all deleted when the setting “Delete data upon uninstall” was enabled.

Refer to the complete plugin changelog for more detailed information about what was new, improved and fixed in previous version updates of WP 2FA.