Drupal 2FA


Two-Factor authentication has been an essential component of Drupal sites to nullify the identity theft. This handbook will guide you through the steps of setting up 2FA on your Drupal site using the Two Factor Authentication - 2FA / Passwordless Login module. This will also walk you through all the features provided by the module.

What is Two-factor authentication?

Two-factor authentication refers to verifying the authenticity of a user by an additional method on top of basic authentication using username/email and password. This adds a layer of security and protects the website against brute force and phishing attacks.

The Two Factor Authentication - 2FA / Passwordless Login module protects the user accounts on Drupal sites by adding a second factor of authentication after default authentication by Drupal. The module provides 16+ 2FA methods and verifies the users based on "Something the user knows," or "Something the user has”!

Supported 2FA methods

  1. OTP-based 2FA methods

    • OTP over Email
    • OTP Over SMS
    • OTP Over SMS and EMAIL
    • OTP over Phone
  2. TOTP-based 2FA methods

    • Google Authenticator
    • Duo Authenticator
    • Microsoft Authenticator
    • Okta Verify
    • miniOrange Authenticator
    • Authy Authenticator
    • Lastpass Authenticator
    • 2FAS Authenticator
  3. Other 2FA methods

    • Email Verification
    • Hardware Token
    • Security Questions (KBA)
    • Push Notification
    • QR Code Authentication

Do you think there is any 2FA method missing from the list for your use case? Feel free to contact us at info@xecurify.com. We will be happy to assist you through.