Type
magento2-module
Magento 2 Two Factors Authentication Extension
magento2-module
proprietary
None
None
None
None
None
Magento 2 Two-Factor Authentication from Mageplaza is built to ensure the highest security for your Magento 2 stores. The extension can force using 2FA or auto skip 2FA request for trusted devices. Mobile compatibility is also supported in this module.
Q: I got error: Mageplaza_Core has been already defined
A: Read solution here
Q: How many steps admin has to pass to access admin data?
A: There are two steps. The first is simple with username and password, the second is authentication code provided by the mobile authentication app
Q: Which apps can I use for 2FA?
A: We recommend you use Authy and Google Authentication for the best result.
Q: If I do not want to be required 2FA the next time, how can I do?
A: You can do by enabling the trusted device function and set the trusted time by days. Then, in the first login, click on Trust this device for x days. It can be done properly.
Q: I am a store owner. Our store has many admins. How can I set 2FA for specific accounts only?
A: Kindly follow this guide. Firstly, turn off Forcing to use 2FA function. Then the admin accounts which is not set as a trusted device and turn on 2FA will have to use 2FA.
Q: Can I know the list of trusted device and remove any accounts if any changes require?
A: Yes, you can easily see from admin backend and click on remove button to do any removing accounts.
Install via composer (recommend): Run the following command in Magento 2 root folder:
With Marketing Automation (recommend):
composer require mageplaza/module-two-factor-authentication
php bin/magento setup:upgrade
php bin/magento setup:static-content:deploy
Without Marketing Automation:
composer require mageplaza/module-two-factor-authentication
php bin/magento setup:upgrade
php bin/magento setup:static-content:deploy
For versions below Magento version 2.4.0, it requires to install the library of bacon-qr-code via composer by the following command
composer require bacon/bacon-qr-code
Magento 2 Two Factor Authentication (2FA) supports backend store data to be better protected with two steps of verification. If forcing feature is enable, admins are required to set up two-factor authentication before they have the ability to access all data from backend panel.
To activate two-factor authentication, the support from mobile authentication apps is needed. Admins need to download apps such as Authy, Duo, Google Authentication. After registering authenticator accounts by scanning QR code or manually entering the provided key, the app will create a unique verification code which is used to confirm the admin account.
To save time for trusted admin accounts after the first time login, Trusted device function is supported. After this feature is configured well, via a click to require trust for next login, the device will be listed to trusted list and not be required authentication code in a specific time.
As a result, after the first time confirming the account successfully, as long as within the trusted time, the second verification is not required for the next login times. With this feature, it is time-saving for key store admins whose accounts are believed to be reliable.
It is easy to manage all trusted verified admin roles by the Trusted Device list. The information of logged users are recorded clearly with the following details:
Besides, super admin or store owners can easily remove any admin accounts from the trusted device in case there is any account updates. Therefore, admin panel can be protected well from the ill-intentioned access.
Enable/ Disable requiring users to register 2FA
Set trusted time for user accounts by days
Be well responsive to mobiles, desktop, tablets, and other screen sizes.
When logging in the backend, admin users need to fill in the authentication factors
When turn on Trusted Device, authentication request page looks like this:
From Admin panel, go to Stores > Configuration > Mageplaza > Two factor Authentication
Enable: Select Yes
to activate the module
Force Using 2FA:
Yes
to force all admin users to register Two-Factor Authentication (2FA). If the account logged in has not yet installed 2FA in the account setting, it will be linked to the Account setting page for installationEnable Trusted Device:
Yes
to enable saving the trusted devices. In a certain period of time, when logging in with this device, admin users do not need to authenticate the two factorsTrusted Time:
Whitelist(s):
Admins need to go to Account Setting to set QR/Pin code
Remove
buttonGet more Free extension on Github: - Magento 2 SEO extension - Magento 2 Social Login - Magento 2 Product Slider - Magento 2 Gdpr - Magento 2 Security extension - Magento 2 Google ReCaptcha - Magento 2 Blog extension - Magento 2 Twitter Widget - Magento 2 Banner Slider
Explore Magento 2 modules on Marketplace: - Magento 2 Currency Formatter - Magento 2 Multi Flat Rates - Magento 2 Name Your Price - Magento 2 Instagram Feed - Magento 2 Share Cart - Magento 2 Same Order Number - Magento 2 One Step Checkout - Magento 2 PDF Invoice - Magento 2 Auto Related Products - Magento 2 SEO extension - Magento 2 Gift Card