Setting Up and Using Two-Factor Authentication (2FA) for Users

Two-Factor Authentication (2FA) adds an extra layer of security to your WordPress site by requiring users to verify their identity using a phone app in addition to their password. Here’s a step-by-step guide on how users set up 2FA and how the login process works after it’s enabled.

First-Time Setup for Users

When 2FA is enabled by the admin, the first time a user tries to log in, they will be prompted to set up 2FA.

Setting up 2FA for users
Setting up 2FA for users

Follow these steps:

  1. Log In: Enter your username and password as usual.
  2. Scan QR Code: A QR code will appear on the screen. Open your preferred authenticator app on your phone (such as Google Authenticator or Authy) and scan the QR code.
  3. Enter Code: The authenticator app will generate a 6-digit code. Enter this code on the setup page to validate your 2FA.
  4. Complete Setup: Once the code is entered and validated, you will be logged in as usual.

Note: If the admin has set a grace period, users will see a link allowing them to skip the 2FA setup for a specified number of days. The default grace period is 14 days, but this can be adjusted by the admin.

Logging In with 2FA Enabled

After the initial setup, the login process will include an additional step to enter the 2FA code:

Enter the code from your 2FA app
Enter the code from your 2FA app to continue log in.
  1. Enter Login Credentials: Input your username and password as usual.
  2. Enter 2FA Code: You will be redirected to a form where you need to enter the 6-digit code generated by your authenticator app.
  3. Access Granted: Once the correct code is entered, you will be logged into the website.

By following these steps, you can ensure your account is protected with an extra layer of security through 2FA.

How to Reset 2FA Settings

If you need to reset 2FA settings for all users, you can do so using the button on the Tools page. This will reset all users’ 2FA settings and require them to set up 2FA again the next time they log in.

For more detailed instructions and troubleshooting, refer to our documentation on how to reset 2FA.

Tags: ,

Was this helpful?