Описание
Бесплатный и простой в использовании плагин двухфакторной аутентификации для WordPress
Add an extra layer of security to your WordPress website login and protect your users. Enable two-factor authentication (2FA), the best protection against password leaks, automated password guessing, and brute force attacks.
Используйте плагин WP 2FA для включения двухфакторной аутентификации для администратора WordPress, а также для принудительного использования 2FA пользователями вашего сайта или пользователями с определенной ролью. Этот плагин очень прост в использовании; все настраивается с помощью мастеров с четкими инструкциями, поэтому даже нетехнические пользователи смогут настроить 2FA, не прибегая к технической помощи.
Характеристики | Начало работы | Получите Премиум!
🔒 WP 2FA key plugin features and capabilities
- Passkeys support for passwordless logins
- Free two-factor authentication (2FA) for all users
- Multiple 2FA methods supported, including authenticator app (TOTP) and code over email
- Developer API to integrate any alternative 2FA method (WhatsApp, OTP Token, etc.)
- Universal 2FA app support – works with Google Authenticator, Authy, and any TOTP-compatible app
- Backup codes (16 digits) for recovery access
- Wizard-driven setup – no technical knowledge required
- 2FA policies to enforce setup with grace periods or instant activation
- REST API endpoints for custom integrations and headless WordPress setups
- Dashboard-free setup – users can configure 2FA without WP admin access
- Editable email templates for full customization
- Much more!
💎 Upgrade to WP 2FA Premium and get even more benefits
Премиум-версия WP 2FA поставляется с еще большим количеством функций, чтобы поднять безопасность входа на сайт WordPress на новый уровень.
В премиум-версии WP 2FA вы получите больше методов 2FA, интеграцию с WooCommerce в 1 клик, функцию доверенных устройств и широкие возможности «белой метки».
Список Премиум функций
- Everything in the free version
- Full white labeling capabilities to change all text and visuals in the wizards, emails, SMS, and 2FA pages
- Support for multiple passkeys per user for flexible passwordless logins
- Zero-setup email 2FA that automatically enrolls users without manual configuration
- YubiKey hardware key support for enterprise-grade security
- Additional 2FA methods such as SMS, email link, and more
- Trusted devices so users can log in without 2FA for a configured period
- Require 2FA on password reset to strengthen account protection
- Allow next user login without 2FA to help recover accounts locked out of authentication
- One-click WooCommerce integration to enable 2FA for customers and store admins
- And much more!
Обратитесь к странице функции и преимущества плагина WP 2FA, чтобы узнать больше о преимуществах перехода на WP 2FA Премиум.
🛠️ Free and premium support
Support for the free edition of WP 2FA is free on the WordPress support forums. Premium world-class support via one-to-one email is available to the Premium users — upgrade to premium to benefit from email support.
Для любых других вопросов, отзывов или если вы просто хотите связаться с нами, пожалуйста, используйте нашу форму обратной связи.
ПОДДЕРЖИВАЕТСЯ & КОМПАНИЕЙ MELAPRESS
Melapress develops high-quality WordPress management and security plugins, such as Melapress Login Security, Melapress Role Editor, and WP Activity Log; the #1 user-rated activity log plugin for WordPress.
Просмотрите наш список плагинов безопасности и администрирования WordPress, чтобы узнать, как наши плагины могут помочь вам лучше управлять и улучшать безопасность и администрирование ваших сайтов и пользователей WordPress.
Установка WP 2FA
Изнутри WordPress
- Перейдите в раздел «Плагины > Добавить новый».
- Поиск ‘WP 2FA’
- Установите & активируйте WP 2FA на странице плагинов.
Вручную
- Загрузите плагин из репозитория плагинов WordPress
- Распакуйте zip-файл и загрузите папку в каталог /wp-content/plugins/
- Активируйте плагин WP 2FA через меню «Плагины» в WordPress
Как показано на:
Скриншоты
The first-time install wizard allows you to set up 2FA on your website and for your users within seconds. 
The wizards make setting up 2FA very easy, so even non-technical users can set up 2FA without requiring help. 
Вы можете потребовать от пользователей включить 2FA, а также дать им отсрочку для этого. 
Пользователи также могут использовать одноразовые коды по электронной почте в качестве двухфакторного метода аутентификации. 
You can use policies to require users to instantly set up and use 2FA, so the next time they log in, they will be prompted with this. 
You can give users a grace period until they configure 2FA. You can also specify what the plugin should do once the grace period is over. 
Всем пользователям рекомендуется также генерировать резервные коды на случай, если они не смогут получить доступ к основному устройству. 
In the user profile, users only have a few 2FA options, so it is not confusing for them, and everything is self-explanatory.
Часто задаваемые вопросы
-
Does the plugin send any data to Melapress?
-
No, the plugin does not send any data to us whatsoever. The only data we receive is license data from the premium edition of the plugin.
-
What 2FA methods are available with the plugin?
-
The free edition of WP 2FA includes the following 2FA methods: Authenticator app 2FA and code over email. This allows you to use Google Authenticator OTP The premium edition adds YubiKey, one-click email link, SMS 2FA, and Authy push notifications.
-
How can I integrate two-factor authentication (2FA) into my custom login process or AJAX-based form?
-
WP 2FA includes a REST API that allows developers to enable and verify 2FA during custom authentication flows, such as AJAX-based login forms, mobile apps, or headless WordPress websites. Refer to the REST API in WP 2FA documentation for more information.
-
How can I ensure I do not get locked out?
-
WP 2FA includes backup authentication methods so that if the primary authentication method fails, you and your users can still log in. The free version of the plugin includes backup codes, which can be configured during 2FA configuration or at any point after that from the profile page. The premium edition adds 2FA backup codes over email.
-
What happens if I get locked out?
-
In the unlikely event that you are unable to supply your 2FA code, there are several steps you can take to gain access to your WordPress dashboard. First, check if there is another administrator who can reset your 2FA. If this is not possible, manually deactivate the plugin, log in without 2FA, re-activate the plugin, and then reconfigure your 2FA.
-
Does WP 2FA support multi-site networks?
-
Yes, WP 2FA is multisite compatible. The plugin can be activated at the network level. 2FA policies can be enforced on all users, a subsection of users, or per site on the network. It also supports network setups with different domains.
-
Does the plugin receive updates?
-
We update the plugin fairly regularly to ensure the plugin continues to run in tip-top shape while adding new features from time to time.
-
Does the plugin support Google Authenticator?
-
Yes, WP 2FA fully supports Google Authenticator on WordPress. WP 2FA also supports many other 2FA authenticator apps.
-
Can I get support if I get stuck?
-
Support for the free edition of the plugin is provided only via the WordPress.org support forums. You can also refer to our support pages for all the technical and product documentation.
If you are using the Premium edition, you get direct access to our support team via one-to-one email support.
-
How can I report security bugs?
-
You can report security bugs through the Patchstack Vulnerability Disclosure Program. Please use this form. For more details, please refer to our Melapress plugins security program.
Отзывы
Участники и разработчики
«WP 2FA — двухфакторная аутентификация для WordPress» — проект с открытым исходным кодом. В развитие плагина внесли свой вклад следующие участники:
Участники
«WP 2FA — двухфакторная аутентификация для WordPress» переведён на 14 языков. Благодарим переводчиков за их работу.
Перевести «WP 2FA — двухфакторная аутентификация для WordPress» на ваш язык.
Заинтересованы в разработке?
Посмотрите код, проверьте SVN репозиторий, или подпишитесь на журнал разработки по RSS.
Журнал изменений
3.1.1 (2026-02-17)
-
New features
- Added a deactivation form feedback, to optionally capture user feedback.
-
Plugin & functionality improvements
- Removed some redundant code (Clickatell SDK Premium-only files) from the Free edition of the plugin.
- Refactored the Freemius SDK licensing components for better maintainability.
- Added a user-email check as a precaution in the 2FA setup to ensure the 2FA email is sent to the email address on account.
- Added the feedback survey notice to gater user insights and help us improve the plugin.
- Added the hook «wp_2fa_should_redirect_unconfigured» that allows developers to control whether the plugin intercepts and blocks backend requests when a user is forced to set up 2FA but hasn’t completed the configuration yet.
-
Устранение ошибок.
- Fixed a user-reported error: PHP Fatal error: Uncaught TypeError: strpos(): Argument #1 ($haystack) which could occur in /extensions/trusted-devices/class-core.php:299
- Fixed: default email address generation incorrectly stripping the first letter from domains starting with «w». Credits for reporting this go to David Scott.
- Fixed an issue causing the 2FA bypass feature to malfunction if used with the Free edition of Melapress Login Security.
- Fixed an error that could appear when using WP Engine Single Sign-on feature with WP 2FA active.
Обратитесь к полному журналу изменений плагина для получения более подробной информации о том, что было добавлено, улучшено и исправлено в предыдущих обновлениях версии WP 2FA.