WordPress Two-Factor Authentication – How to Setup For Free

We all know how important it is to be secure, especially when it comes to your domains and websites. The last thing you want happening is someone to gain access and destroy all the work you have done. That is why I always recommend taking backups of your website. And the 2nd thing I recommend doing is setting up WordPress two-factor authentication. Follow the quick and easy steps below to get up and running for free.

Setup WordPress Two-Factor Authentication

There are a lot of WordPress two-factor authentication plugins you can choose from. My personal favorite is the Google Authenticator. It is completely free and you can set it up for an unlimited amount of users. Most of the other plugins out there you will notice they have limitations in place, unless you upgrade to premium.

Step 1

Under “Add New” plugins in your dashboard search for “Google Authenticator.” You can also download it directly from the repository. It will be the one developed by Henrik Schack. Click on “Install Now.”

google authenticator wordpress two-factor

Step 2

You can then click into each User profile and setup the two-factor authentication. You can do this by creating a new secret key or by simply scanning the QR code. Then make sure to mark it “Active.”

wordpress two-factor authentication setup

You can use the free Authenticator Apps on your phone:

After enabling this it will now require your normal password to login plus the code from the Google Authenticator on your phone. You will notice an additional field on your login page. Also, this plugin is fully compatible with the plugin that I use to change my WordPress login URL.

google authenticator wordpress login

And that’s its. The next time you login just have your phone ready.


As you can see setting up WordPress two-factor authentication is very easy and only takes a few minutes. Then you can relax, knowing that your site is just a little bit more secure. Have any questions? Drop them in the comments below.

author bio
Brian Jackson

I craft actionable content and develop performance-driven WordPress plugins. Connect on X, subscribe to my newsletter (once a month), or buy me coffee.

4 thoughts on “WordPress Two-Factor Authentication – How to Setup For Free”

  1. I personally use (and really like) the clef plugin. Used to use google authentication as well, until i came across clef

    • Hey, ya Clef is also a great plugin. The downfall is that it isn’t free for multiple users. I work with a lot of sites that have multiple users and we didn’t want to pay just to setup two-factor auth. But definitely recommend it for smaller sites!

  2. “The last thing you want happening is someone to gain access and destroy all the work you have done. ”

    Sorry, I didn’t get. What are you saying. It’s look opposite to me.

    • Simply saying, you don’t want someone gaining access to your site and deleting everything or wiping your database clean. If they do, all your work might be lost. However, I always recommend that everyone have multiple backups.

      The part where I say “the last thing you want happening” is more of a commonly used English phrase :)


Leave a Comment