This article was published 6 years ago, therefore the contents of this post may be out of date.

Securing your website requires several steps, as attackers and malicious users can find their way into your WordPress through a variety of methods. For instance, keeping your WordPress installation, themes and plugins up to date is one of the most basic steps in security.

Another common method might be compromised is brute force attacks. By relying on brute force attacks, malicious hackers can gain access WordPress dashboard, and ultimately, take control of your site.

Using a strong password is definitely the key here. However, many users also rely on two-factor authentication for added security. Today’s WordPress Wednesday showcasing 5 Free Two Factor Authentication (2FA) Plugins.

1. Keyy

Keyy, is by the team over on UpDraft, this plugin gives you 2-factor authentication with a difference. It replaces passwords with sophisticated RSA public-key cryptography, which results in stronger security and a better user experience.

Keyy has been built on RSA public-key cryptography, which is the same tried-and-tested technology underlying secure websites (SSL). Keyy will login by scanning a code with your phone (or other device), there’s no central point of failure. The login instruction goes directly from your phone to your website; no third-party server is involved.

Price: Free

2. Google Authenticator

This plugin is a highly secure & easy to setup Two Factor Authentication (Google Authenticator) for any WordPress site, rather than relying on a password alone, which can be phished or guessed, miniOrange Two Factor authentication (Google Authenticator) adds a second layer of security to your WordPress accounts.

Price: Free

3. Trusona

Trusona is leading the #NoPasswords Revolution so you can login to your WordPress accounts without any passwords. Just point your phone to the dynamic QR code and voila – you are in.

Price: Free

4. Duo Two-Factor Authentication

Duo Security provides two-factor authentication as a service to protect against account takeover and data theft. Duo is easy to setup and use, there’s no extra hardware or complicated software to install, just sign up for Duo’s service and install the plugin. Then you can set which user roles you want to enable two-factor authentication for—admins, editors, authors, contributors, and/or subscribers—without setting up user accounts, directory synchronization, servers, or hardware.

Price: Free

5. Rublon Two-Factor Authentication

Rublon is also one of the best two-factor authentication WordPress plugins, and it will provide you with the best solution by letting you first confirm your identity on a device and after that, when you login from the same device using the same browser, you just need to use your WordPress credentials, that is, no further step is involved.

Setting up with Rublon is also an easy task. First, you will have to register on the official site of the plugin, and then you will have to download an app as well. The app will be able to scan a barcode as well. After that, you will have to install and activate the plugin on your website.

Price: Free


WordPress Wednesday – Two Factor Authentication Plugins