Two Factor Auth
Secure WordPress login with Two Factor Auth. Users will have to enter an One Time Password when they log in.
4.6(22 reviews)
·10 active installs·Updated 11 years agoAs of April 2026, Two Factor Auth is a WordPress auth plugin with 10 active installations and a 4.6/5 rating from 22 reviews. It has been downloaded 14K+ times in total. Requires WordPress 3.1.0+ and PHP false+. Available on WordPress.org since 2013. Last updated 11 years ago — may have compatibility concerns. Top alternative: authLdap.
4.6/522 reviews
10active installs
14K+total downloads
13 yearssince 2013
Overview
Secure WordPress login with this two factor auth. Users will have to enter an One Time Password when they log in.
Why You Need This
Users can have common or weak passwords that lets hackers/bots brute-force your WordPress site and gain access to your files and place malware there.
Just like happend not that long ago: Article on TechCrunch
If all sites would have used this plugin, this would never happend.
It doesn’t matter how weak your users passwords are, no one can gain access to your WordPress site
without already having access to the users mobile phone or email inbox (depending on how the user gets his OTP).
How Does It Work?
This plugin uses the industry standard algorithm TOTP or HOTP for creating One Time Passwords.
A OTP is valid for a certain time and after that a new code…
Screenshots
Ratings & Reviews
4.622 reviews
5 ★
20
4 ★
0
3 ★
0
2 ★
0
1 ★
2
Compatibility
| WordPress | 3.1.0+ requiredTested up to 3.9.40 |
| PHP | false+ required |
Top Alternatives to Two Factor Auth
Frequently Asked Questions
Changelog
4.4
- Added spanish translation, thanks to Andrew Kurtis at WebHostingHub for that.
- Added settings section to change the OTP email from address and name on admin settings page. Thanks to Denny Cherry at Denny Cherry & Associates Consulting for that.
Contributors
Plugin data sourced from WordPress.org. Analysis and metrics by PluginSift.