Plugins DatabasePlugins Database logo
Back to plugins
Homepage WordPress

Actions

DownloadAuthor pageSee on WordPress

Plugin info

Total downloads: 1,358,009
Active installs: 90,000
Total reviews: 195
Average rating: 4.8
Support threads opened: 1
Support threads resolved: 0 (0%)
Available in: 42 language(s)
Contributors: 22
Last updated: 9/5/2025 (117 days ago)
Added to WordPress: 8/10/2015 (10 years old)
Minimum WordPress version: 6.7
Tested up to WordPress version: 6.8.3
Minimum PHP version: 7.2

Maintenance & Compatibility

Maintenance score

Maintained • Last updated 117 days ago • Support resolved 0% • 195 reviews

49/100

Is Two-Factor abandoned?

Likely maintained (last update 117 days ago).

Compatibility

Requires WordPress: 6.7
Tested up to: 6.8.3
Requires PHP: 7.2

Ratings

173
14
0
2
6See all reviews

Developers

Derek Herman (Owner)1Stephen Edgar (Owner)1Steven Word (Owner)4John Blackbourn (Owner)6Kaspars (Owner)6Daisuke Takahashi (Owner)7Steve Grunwell (Owner)8Scott Grant (Owner)9George Stephanis (Owner)22Aaron D. Campbell (Owner)26Stephen Edgar9Steven Word7John Blackbourn7George Stephanis6Steve Grunwell6Kaspars5Derek Herman4Arslan Kalwar4Aaron D. Campbell3Daisuke Takahashi2Scott Grant1Ali Husnain1

Languages

Spanish (Spain)32,360Dutch30,206Russian27,196French (France)20,849German19,853Spanish (Venezuela)17,048Italian15,565Swedish14,890Japanese14,019Spanish (Colombia)13,464Spanish (Mexico)13,287Spanish (Ecuador)11,738Dutch (Formal)11,736Czech10,389Dutch (Belgium)10,363English (UK)9,973German (Formal)9,953Chinese (China)9,700Polish9,087English (Canada)8,372Persian8,053Spanish (Chile)8,024Turkish6,934Chinese (Taiwan)6,927Danish6,292Norwegian (Bokmål)6,152Korean5,844Slovak5,058Arabic4,417Catalan4,308Galician4,008Vietnamese3,631Finnish3,377French (Canada)3,236German (Switzerland)2,934German (Switzerland, Informal)2,913Albanian2,280Chinese (Hong Kong)1,039Urdu670Kurdish (Sorani)436Asturian73

Similar & Alternatives

Explore plugins with similar tags, and compare key metrics like downloads, ratings, updates, support, and WP/PHP compatibility.

Notakey Provider for Two-Factor
Rating 5.0/5 (1 reviews)Active installs 0
Compare
Extensions for Two-Factor
Rating 5.0/5 (1 reviews)Active installs 0
Compare
See more alternatives to Two-Factor

Description

Use the “Two-Factor Options” section under “Users” “Your Profile” to enable and configure one or multiple two-factor authentication providers for your account:

  • Email codes
  • Time Based One-Time Passwords (TOTP)
  • FIDO Universal 2nd Factor (U2F)
  • Backup Codes
  • Dummy Method (only for testing purposes)

For more history, see this post.

Actions & Filters

Here is a list of action and filter hooks provided by the plugin:

  • two_factor_providers filter overrides the available two-factor providers such as email and time-based one-time passwords. Array values are PHP classnames of the two-factor providers.
  • two_factor_providers_for_user filter overrides the available two-factor providers for a specific user. Array values are instances of provider classes and the user object WP_User is available as the second argument.
  • two_factor_enabled_providers_for_user filter overrides the list of two-factor providers enabled for a user. First argument is an array of enabled provider classnames as values, the second argument is the user ID.
  • two_factor_user_authenticated action which receives the logged in WP_User object as the first argument for determining the logged in user right after the authentication workflow.
  • two_factor_user_api_login_enable filter restricts authentication for REST API and XML-RPC to application passwords only. Provides the user ID as the second argument.
  • two_factor_email_token_ttl filter overrides the time interval in seconds that an email token is considered after generation. Accepts the time in seconds as the first argument and the ID of the WP_User object being authenticated.
  • two_factor_email_token_length filter overrides the default 8 character count for email tokens.
  • two_factor_backup_code_length filter overrides the default 8 character count for backup codes. Providers the WP_User of the associated user as the second argument.

Installation

No installation instructions available

Frequently Asked Questions

What PHP and WordPress versions does the Two-Factor plugin support?

This plugin supports the last two major versions of WordPress and the minimum PHP version supported by those WordPress versions.

How can I send feedback or get help with a bug?

The best place to report bugs, feature suggestions, or any other (non-security) feedback is at the Two Factor GitHub issues page. Before submitting a new issue, please search the existing issues to check if someone else has reported the same feedback.

Where can I report security bugs?

The plugin contributors and WordPress community take security bugs seriously. We appreciate your efforts to responsibly disclose your findings, and will make every effort to acknowledge your contributions.

To report a security issue, please visit the WordPress HackerOne program.

Review feed

WPSpeedo
3/7/2022

Good Plugin, But need some improvements

The plugin is good, it works fine with the membership plugin.
Luis Ruiz
12/6/2022

Great plugin

The best to increase the security of your WordPress.
Timi Wahalahti
1/24/2023

My go-to plugin for 2FA!

Works flawlessly! Easy UI for users to setup their 2FA, does not need much configuration if at all. And what I appericiate, does just one thing and does it good - instead of being packed with multiple more or less related functionalities.
Pagecode
3/16/2023

Extremely safe and secure

Best way to protect logins on WP
Masum Billah
4/28/2023

Extremely Secure

Really easy to protect WordPress login

Screenshots

  1. Two-factor options under User Profile.

    Two-factor options under User Profile.

  2. U2F Security Keys section under User Profile.

    U2F Security Keys section under User Profile.

  3. Login with authentication app code.

    Login with authentication app code.

  4. Login with recovery code.

    Login with recovery code.

  5. Login with email code.

    Login with email code.

Changelog

See the release history.

Back to plugins