How to secure your WordPress login with 2FA


Jack Wallen shows you how to add two-factor authentication to your WordPress sites to avoid unwanted intrusions.

Nothing is perfect. No matter what you do to lock down every account you have, you’re still at risk. However, doing nothing is akin to opening the metaphorical door and inviting trouble in. You don’t want that. Even though it might seem futile, you still want to enable every possible hurdle to make the hacker’s job as difficult as possible.

This is true for every account you have—even your company’s WordPress website. If you’re not doing everything you can to protect that site, there’s no telling what could be at stake. Company information, client and customer details, bank accounts, third-party logins…you name it, and it could be laid out for nefarious takers.

To that end, you should secure WordPress logins with two-factor authentication (2FA). Fortunately, this is just an add-on away. I’m going to show you how it’s done.

SEE: Security incident response policy (TechRepublic Premium)

What you’ll need

  • A working instance of the platform  
  • An admin user account

How to install the add-on

Log in to your WordPress instance as an admin user and go to the Plugins section. Click Add New and then, in the resulting window, type WP 2FA in the search field (Figure A).

Figure A

Subscribe to TechRepublic’s How To Make Tech Work on YouTube for all the latest tech advice for business pros from Jack Wallen.

Cybersecurity Insider Newsletter

Strengthen your organization’s IT security defenses by keeping abreast of the latest cybersecurity news, solutions, and best practices.
Delivered Tuesdays and Thursdays

Sign up today

Also see