Setup 2FA on Woocommerce Login Form

WooCommerce is a flexible, open-source eCommerce solution built on WordPress. Whether you’re launching a business, taking an existing brick and mortar store online, or designing sites for clients you can get started quickly and build exactly the store you want. It has 5+ million active installations.

What is 2FA?

Two-factor authentication (TFA) is a method of establishing access to an online account or computer system that requires the user to provide two different types of information.
By far the most common authentication factor in use today is the username/password pair, and since most accounts only require a password for access, most systems thus use single-factor authentication for security. With 2 factor authentication, you'll need to both provide a password and prove your identity some other way to gain access.

Two-factor methods

In our Plugin, we provide various methods to configure 2FA, lik:

  • Google Authenticator
  • TOTP Authenticator Apps

    (Authy Authenticator, Microsoft Authenticator, LastPass Authenticator, Duo Authenticator and Many more)

  • OTP Over SMS
  • OTP Over Email
  • Security Questions
  • miniOrange QR Code Authentication
  • miniOrange Soft Token
  • miniOrange Push Notification

Follow below steps to set Two factor Authentication on Woocommerce login form

  • Open the WordPress Dashboard, go to Plugins and click on Add New.

    Add new plugin

  • Search the Plugin name here and Install the Plugin by clicking on Install Now.

    Install miniOarneg Two_factor plugin

  • Now, Click on Activate.

    Activate miniOrange-2fa plugin

  • Then, a popup will be open on the screen, click on Logout and Configure to configure 2FA.

    Logout and configure two factor

  • Fill the credentials and click on LOG IN. [ If you don’t have Woocommerce installed, you have to install it first. ]

    Logout and configure two factor

  • miniOrange provides a list of authentication methods, you can see here.

    Logout and configure two factor

  • You can select any method. We have shown this for:
    1. Google Authenticator
    2. OTP Over SMS
    3. OTP Over Email

1. Google Authenticator Method:

  • Select Google Authenticator from the list of two-factor methods.

    Logout and configure two factor

  • Now install Google Authenticator app in your phone and scan the barcode from the current page.

    Logout and configure two factor
    Logout and configure two factor

  • After that you can see Google Authenticator Application will give you security tokens or six digit numbers to verify your identity. Enter that security token in the field below and click on Verify and Save.

    Logout and configure two factor

  • Whenever you are trying to login into a WordPress account the Woocommerce login Page will prompt. Enter your account credentials, and click on the Login button.

    Logout and configure two factor

  • After entering valid credentials, Google Authenticator method is prompted as a second factor. Now enter the security token from Google Authenticator app and click on Validate.

    Logout and configure two factor
    Logout and configure two factor

  • After that, you will be logged in to the WordPress Dashboard.

    WordPRess dashboar after_email verification

2. OTP Over SMS Method:

  • Here I am using the OTP Over SMS method for new subscribers.Now, fill the credentials and click on LOG IN.

    WordPRess dashboar after_email verification

  • Select OTP Over SMS Method.

    WordPRess dashboar after_email verification

  • After Successful login, Select Country code and add phone number. Click on the Send OTPbutton.

    WordPRess dashboar after_email verification

  • You will get OTP on your registered phone number. Enter OTP Code and click on the Verify Code button.

    WordPRess dashboar after_email verification

  • Whenever you are trying to login into a WordPress account the Woocommerce login Page is prompted. Enter your account credentials, and click on the Login button.

    WordPRess dashboar after_email verification

  • After login OTP over SMS method is prompted as a second factor.

    WordPRess dashboar after_email verification

  • Now enter the OTP code. Which you have received on a registered phone number and click on Validate.

    WordPRess dashboar after_email verification

  • After that, you will be logged in to the WordPress Dashboard.

    WordPRess dashboar after_email verification

3. OTP Over Email Method:
Here I am using the OTP Over Email method for new subscribers. Now, fill the credentials and click on LOG IN.
WordPRess dashboar after_email verification

  • Select OTP Over Email Method

    WordPRess dashboar after_email verification

  • You will get a OTP code on your registered email id. Enter over here and click on the validate button.

    WordPRess dashboar after_email verification

  • Whenever you are trying to login into a WordPress account the Woocommerce login Page is prompted. Enter your account credentials, and click on the Login button.

    WordPRess dashboar after_email verification

  • After login, OTP over email method is prompted as a second factor. Now enter the OTP code.that you would have received on your registered Email Id. Enter over here and click on the Validate button.

    WordPRess dashboar after_email verification

  • After that, you will be logged in to the WordPress Dashboard.

    WordPRess dashboar after_email verification

If you want to know more about the plugin features please visit here: https://plugins.miniorange.com/2-factor-authentication-for-wordpress