Jetpack Two Step Authentication: Enable Two Factor Authentication to Make Your Site More Secure

-

Two-factor authentication add extra security layer to your WordPress login page and makes your site more secure from Brute Force attacks.





In Brute Force attacks, hackers guess your website’s password and username and hack your site. But two-factor authentication (2FA) adds 2 stage verification to your site’s login page.





If they even hack your password and username, they will need a secret code in the second stage which will be only in your phone.





In this tutorial i'm going to share how to add two factor authentication in WordPress with Jetpack plugin.





What is Two-Factor Authentication and Why It is Important





Two-factor authentication enables two step verification process in which you need your username, password and a secret code that you get from your cell phone via text (SMS) or Google Authenticator app.





WordPress is a very popular CMS. Due to this, the hackers target this CMS instead of other. I do not say that another platform is more secure than WordPress. Mainly more attacks occur on WordPress because of 32.0% websites powered by WordPress according to W3Techs.





WordPress two factor authentication is the best way to protect your website from brute force attacks.





How to Enable Jetpack Two Step Authentication In Self-Hosted WordPress





If you do not have a WordPress.com account, first of all, sign up for it.





After creating your account, log in to your WordPress.com account and click on Profile >> Security >> Two-Step Authentication. You can see screenshot below.





How to Enable Jetpack Two Step Authentication In Self-Hosted WordPress




Click on Get Started button, enter your phone number and click Verify via SMS or Verify via App. You can use anyone. Here I will cover both methods. So there is no need to worry.





Verify via SMS





After entering your phone number click on Verify via SMS.





How to Enable Jetpack Two Step Authentication In Self-Hosted WordPress




You will get a code on your phone number just enter it and hit on Enable button. As you can see the screenshots.





How to Enable Jetpack Two Step Authentication In Self-Hosted WordPress




In the next page, you will see some backup codes. If your phone is lost or stolen, these codes will help you log in. Just save them.





Now check I have printed or saved these codes and click on All Finished! button.









That’s it! If you want to enable two factor authentication through the Google Authenticator app, continue reading.





Verify via App





First, install the Google Authenticator app on your mobile. After installing follow the next step.





Now enter your phone number and click on Verify via App.









Scan QR code with your mobile app using Google Authenticator app. The app will generate a 6digit temporary code that you need to enter in the box below the QR code. Then hit on Enable button.









Here, you will see some backup codes, which will help you to log in if your phone is lost or stolen. So save them.





Now check I have printed or saved these codes and click on All Finished!button.





How to Enable Jetpack Two Step Authentication In Self-Hosted WordPress




Install and enable the Jetpack plugin on your self hosted WordPress site. For more details, see our step by step guide on how to install a WordPress plugin.





Once activated, click on Jetpack >> Settings >> Security, then scroll down to WordPress.com log in and enable Require accounts to use WordPress.com Two-Step Authentication option by enabling Allow users to log into this site using WordPress.com accounts. You can see in the screenshot below.





How to Enable Jetpack Two Step Authentication In Self-Hosted WordPress




Now add the following code snippet to your theme’s function.php file to log in your site through WordPress.com Two-Step Authentication.





// force users to login via wordpress.com
add_filter( 'jetpack_sso_bypass_login_forward_wpcom', '__return_true' );




Now when you enter the login URL of your self-hosted WordPress site, it will redirect to wordpress.com and look like this.









That’s it, you have successfully added WordPress.com Two Factor Authentication using Jetpack plugin.





When you enter your WordPress.com credentials, it will ask for verification code (secret code) that you can get from your phone.





Comment below to share your thoughts and experiences about enabling jetpack two step authentication in WordPress.





We're done, and it's now your turn! Find this article helpful? Don't forget to share!





More Resource on Two Factor Authentication






Comments

Post a Comment

Popular posts from this blog

Fix Submitted URL marked ‘noindex’ in Google Search Console Tool 2018

-
Image
Google has recently introduced a Beta version of Google Search Console tool in which webmaster can easily find out their site insight and content indexing. Today in this article, we will discuss New Index coverage issue detected . After launching Beta version, Google is informed every webmaster about Index coverage issue detected via email. If Google has detected Submitted URL marked ‘noindex’ on your site and emailed you then do not ignore it. It may badly hurt your website SEO and Search Engine ranking. Here we are going to discuss with you how to fix Index Coverage Issue in webmaster tool. So let's start article....... How to fix New Index Coverage Issue Detected in Google search console tool First, log in to your Webmaster tool . Then click on the status >> Index coverage >> Submitted URL marked 'noindex '. Here Google will provide 4 ways ( Test Robots.txt Blocking, Fetch as Google, View as Search Result, Submit to Index ) to fix your affected URLs as you ca
Read more

Keep these 12 things in mind before applying to Google AdSense

-
Image
Do you want to earn a lot of money from Google AdSense but it is not easy to get AdSense approval . Here we will tell you some tips that you should use before applying to Google AdSense so that your Google AdSense application can be approved. Some common questions about Google AdSense, which often do bloggers search. How To Apply For AdSense ? How to get Google Adsense approval? I am eligible to apply for AdSense. What is Requirement for Google AdSense? Why AdSense account disapproved? In this article, we will answer you all these questions. This post is a bit longer but it is helpful for you. What is Google AdSense and why should you use it Google AdSense is a great advertising publishing network  owned by Google. It has millions of Satisfied Customers and Publisher. The biggest reason for this, AdSense always pays on time . Another reason to choose Google AdSense, if your blog has high-quality content then you can earn a lot of money through it. Today there are many bloggers who ar
Read more

What is Google Adsense and How much you can make money

-
If you are a blogger then you will know about Google Adsense . Adsense is the world's largest advertising network . All bloggers want to earn money through their blogs with Google Adsense. In this articles, we will know  What is Google Adsense, how does Google Adsense work and How much you can make money from it. After getting Google Adsense approval , Many bloggers ask how does Google Adsense work and How much you can make money from it . Keeping the same questions in mind, I am writing this blog post. I hope you like this article. Google Adsense is a name that every blogger, YouTuber, and online earner knows well and Everybody wants to approve their account by Google Adsense , whether he is a blogger, website owner or YouTuber. The biggest reason for this is that the Google Adsense program is a network that offers the highest money for advertising and people are earning millions of rupees per month. If you are a blogger or a website owner then Google Adsense is a good choice. Now
Read more