The simplest way to add two-factor authentication (2FA) to WordPress
On a recent project, a client requested that we enable two-factor authentication (2FA) for a WordPress website (a very good idea). We’d used Duo, a best-in-class security provider, on custom-built Rails applications before, but never with WordPress. We opted to try it here and I’m glad we did: it turns out setup was effortless and it’s easy to use.
- It can be used free with up to 10 users
- There is a well-maintained plugin that makes set up quick and easy
- You can require two-factor for all users or only specific user roles
- Users can easily self-enroll (i.e., no burdensome set up)
How does it work?
After configuration, users go to the same WordPress login page as before. After entering the username and password a new prompt appears, which walks the user through authenticating a second way: either via a text message or the Duo app (or even a voice call).
Want to get started?
It took me less than 15 minutes to get signed up, configured, and logged into the WordPress website using Duo’s two-factor authentication. Given the benefits, cost (free), and ease of use, I anticipate we’ll be similarly enhancing many client WordPress sites in the near future.
Need a partner to help you secure your WordPress website? Let us know how we can work with you, today: https://fiatinsight.com/contact