Protect your WordPress user account with Google Authenticator

With Google Authenticator, you can combine classic username and password login to your WordPress site with an additional security code. This will increase the security of your website.

WordPress supports two-factor authentication via Google Authenticator using plug-ins such as Hendrik Schack's Google Authenticator. In the first step, you activate two-factor authentication in the admin area and can then customise the two-factor authentication for each user individually. This allows you to protect admins specifically and, for example, exclude authors from two-factor authentication.

Managed WordPress Hosting
Create your site with AI, we manage the rest
  • Stress-free, no matter your skill level with easy AI tools
  • Full customisation with themes and plugins
  • Hassle-free updates and less admin

Install Google Authenticator

Install the Google Authenticator App on your iOS or Android smartphone.

Install Google Authenticator WordPress plugin

In the WordPress admin area, select Plugins, then install and search for Google Authenticator.

You can now customise two-factor authentication for your users.

Setting up two-factor authentication for WordPress users

  • Open the User area
  • Select the user for whom you want to enable two-factor authentication.
  • Under Google Authenticator Settings, enable the Enable Google Authenticator option.
  • Click on Show/Hide QR Code

You should now see an automatically generated QR code.

  • Open the Google Authenticator app on your smartphone and scan the QR code.

Alternatively, you can create the account manually. Use the description and secret key that WordPress displays for this user.

In the Google Authenticator App, you'll now find a new listing for your website. The security code is updated every 30 seconds.

  • Click on Update profile.

Two-factor authentication is now set up for this user. Use a new security code for each login in the future.

Write down a secret key

If you do not have access to your authenticator, you can use the secret key to link a new authenticator.

Put the secret key in a safe place. Old-fashioned but safe: Write it on a piece of paper of your choice.

THAT'S ALL THERE IS TO IT! CONGRATULATIONS, YOUR WORDPRESS WEBSITE HAS BECOME A LOT SAFER!

Was this article helpful?
Page top