SWPM Two-Factor Authentication Addon

Table of Contents

• What is a Two-Factor Authentication and How Does it Work?
• Login Code Verification Process
• Installing the Simple Membership 2FA Addon
• Configuring the SWPM Two-Factor Authentication Addon
• How Do Members Log in With Two-Step Authentication?
• Excluding Certain Members from the Two-Factor Authentication Process
  • Disabling 2FA for a Member
  • Disabling 2FA for a Membership Level
• Get the 2FA Addon

The SWPM Two-Factor Authentication Addon enhances the Simple Membership Plugin by adding an extra layer of security to member logins.

When enabled, members must not only enter their correct username and password but also provide a unique code sent to their email during the login process. This significantly strengthens login security and helps reduce account sharing.

What is a Two-Factor Authentication and How Does it Work?

Two-Factor Authentication often referred to as Two-Step Authentication is a security feature. When the Two-Factor Authentication Addon for Simple Membership is enabled, members will need to enter their password as well as the randomly generated code sent to their email. This ensures that the person logging in is the ‘real’ member.

Also referred to as 2FA, multiple factor authentications are crucial in staying safe online in today’s society. When we expose so many personal details on the internet it is important that those details remain confidential.

The SWPM Two-Factor Authentication Addon makes it easy to add an additional security layer to the member login. This not only deters hackers from trialing combinations to access a members account but also means if they do work out the password they still cannot log in.

While implementing this addon on your site does mean it may take members extra few seconds to login (since they have to retrieve the special code from their email), it protects any unauthorized access to their account. Also, this process makes the sharing of member account difficult since the member is required to get the special code from the email. So it is not feasible to share the username and password that easily.

Login Code Verification Process

When logging in, a unique 6-digit code is generated randomly for enhanced security. This code is sent to the email address associated with the account each time a login attempt is made. To complete the login process, the latest code received via email must be entered, ensuring only the intended user can access the account.

Installing the Simple Membership 2FA Addon

1. Click on the Add New menu under the plugins interface.
2. Go to the Uploader tab and upload the swpm-2fa.zip file
3. Hit the Install Now button and then activate the addon

Configuring the SWPM Two-Factor Authentication Addon

1. Ensure that you have Installed and Activated the addon.
2. Once the addon is activated on your WordPress site, you will see a new menu under WP Membership. This menu is titled Two-Factor Authentication.
3. Within this menu you will need to mark the checkbox to enable 2FA on your website.
4. Ensure the From Email Address is correct and includes your domain name for example: ‘[email protected]‘.
5. Customize the Email Subject if needed.
6. Customize The Email Body if you wish. Do not edit the information within the brackets/braces. This contains information to generate the unique code your member will need to login.
7. Click on the Update button.
8. This feature is now enabled on your site. Create a ‘test’ member to ensure the email is sent correctly and the login flow works as required.

How Do Members Log in With Two-Step Authentication?

The login process is similar to the ‘normal’ member login in the fact that a username and password is required. Once the member enters their correct username and password they will then be prompted to enter the second step authentication. This is in the form of a unique code sent to the member’s email. Once they copy and paste the correct code into the required field they will be logged into the site.

Step 1) Members log in using their correct username and password. After hitting the Login button, an email is automatically sent to the member’s email address. This is why it is important to use a correct and valid email address for the member account. This email will contain the unique 2FA login code.

Step 2) Members are prompted to enter the code sent to their email in the required field.

Step 3) Members copy and paste the code from their email into the confirmation code field and click the Continue button.

Step 4) The member is successfully logged into the site.

Excluding Certain Members from the Two-Factor Authentication Process

If for any reason you would like for some of your members to bypass the two-factor authentication process you can do so by disabling this feature in each of their profiles. By default, all your members will need to complete the 2FA process. See the steps below to disable 2FA for any given member.

Disabling 2FA for a Member

1. Click on WP Membership and then on the Members menu.
2. Click the Edit button for the member that you would like to disable 2FA for.
3. Scroll to the bottom of the page. You will see a checkbox titled Disable Two-Factor Authentication.
4. Mark the Checkbox to disable this feature for that particular member.
5. Click the Save Data button.
6. Complete steps 2 to 5 for any member that you wish to disable 2FA for.

Disabling 2FA for a Membership Level

You can disable 2FA for all members of a specific membership level. To do this, edit the desired membership level, check the “Disable Two-Factor Authentication” box, and save the changes.

Get the 2FA Addon

SWPM 2 Factor Authentication

This addon adds the 2 factor authentication for member login. This greatly enhances the login security and reduces account sharing.

This is a one-time payment (includes 1 year of support and updates).

Price: $39.95

Select Your License : Single SiteUp to 5 Sites [+ $60.00]Up to 10 Sites [+ $120.00]