Published on
Dec 17, 2024
Updated on
Dec 30, 2024
Share

Introduction to dual authentication with WPMasterToolKit

The security of connections to a WordPress site is a major concern for site administrators. To meet this need, we've integrated a dual authentication module (2FA) into WPMasterToolKit. This feature enhances security by adding an extra step to the login process, protecting your site against brute-force attacks and unauthorized access. This module replaces the need to install a third-party plugin dedicated to dual authentication.

Which plugin can this module replace?

The module Two Factor Authentication from WPMasterToolKit can replace popular plugins such as Two Factor Authentication by WP Plugins, Google Authenticatoror similar 2FA-based solutions. The advantage here is that this module is part of the WPMasterToolKit ecosystem, guaranteeing optimum compatibility with the plugin's other functionalities.

Discover the module : Move login URL

Main features of the module

  1. Flexible authentication methods :
    Currently, the included method is sending a unique code by email, but the structure is extensible for other methods.
  2. Activation by user role :
    You can activate dual authentication only for specific roles (e.g. administrators or editors).
  3. Customize settings :
    Administrators can configure authentication methods directly from the WordPress dashboard.
    WordPress security menu with authentication options.
  4. Checking the login page :
    A simple but secure validation process enables users to complete their connection by entering the code sent by email.
  5. Optimized user interface :
    The module offers a neat interface for administrators in the dashboard, as well as an intuitive user experience when logging in.

How to use this module

Module activation

To activate the module, go to the WPMasterToolKit settings page and enable the "Two Factor Authentication" module. Once activated, a dedicated sub-menu will appear in the settings.

Settings configuration

  1. Go to the submenu Two Factor Authentication.
    Two-factor authentication interface for WordPress.
  2. Activate dual authentication for the desired user roles. For example, check "Administrator" to protect only accounts with full access to the site.
  3. Activate or deactivate the available authentication methods. By default, the "Email" method is enabled.

User experience

When a user attempts to log in, a modal window opens after entering their login details. This window prompts the user to choose a method (for example, to receive a code by e-mail).

WordPress login with two-factor authentication.

Once the code has been emailed to the user, all they have to do is copy and paste it into the popup window.

Email containing a secure connection code.
WordPress two-factor authentication screen.

User management

Administrators can also manage user authentication preferences directly in their WordPress profiles.

Technical choices behind this module

  1. Using WordPress hooks :
    The module uses hooks such as login_form and wp_authenticate_user to integrate directly into the WordPress login process. This ensures native compatibility without disrupting other features.
  2. Enhanced security with nonces :
    All AJAX actions and administration forms use nonces to prevent CSRF (Cross-Site Request Forgery) attacks.
  3. Scalability :
    The module is designed to be scalable. Developers can use hooks such as wpmastertoolkit_two_factor_authentication_email_html to personalize emails or add new authentication methods.
  4. Native WordPress compatibility :
    The module uses WordPress APIs such as wp_mail for sending emails and user metadata for storing temporary codes.
Pro
from
2.50$
/Month
14
Days
Money-back guarantee
risk-free at 100 %!

Conclusion

The module Two Factor Authentication from WPMasterToolKit is a lightweight, high-performance solution for strengthening the security of your WordPress site. It features advanced protection without the need for third-party plugins, while integrating seamlessly with the WordPress administration interface. Thanks to its flexibility and detailed settings, it meets the security needs of all types of site, from personal blogs to corporate sites.

Category
Security
Version
≤ 2.0.0
Type
Pro
More than 18 reviews
+1000
Installations
104
Modules
Pro
from
30.00$
/Year