Protect your WordPress user account with Google Authenticator

IONOS editorial team01/26/20212 mins

With Google Authenticator, you can combine classic username and password login to your WordPress site with an additional security code. This will increase the security of your website.

WordPress supports two-factor authentication via Google Authenticator using plug-ins such as Hendrik Schack's Google Authenticator. In the first step, you activate two-factor authentication in the admin area and can then customize the two-factor authentication for each user individually. This allows you to protect admins specifically and, for example, exclude authors from two-factor authentication.

WordPress Hosting

Your WordPress, easier and simpler, with AI

Create & customize your site with AI tools made for everyone
3x faster: SSD, caching & more
Daily security scans, DDoS protection & 99.98% uptime

Install Google Authenticator

Install the Google Authenticator App on your iOS or Android smartphone.

Install Google Authenticator WordPress plugin

In the WordPress admin area, select Plugins, then install and search for Google Authenticator.

Install the Google Authenticator plugin from Hendrik Schack.
Activate the plugin Google Authenticator by Hendrik Schack.

You can now customize two-factor authentication for your users.

Setting up two-factor authentication for WordPress users

Open the User area
Select the user for whom you want to enable two-factor authentication.
Under Google Authenticator Settings, enable the Enable Google Authenticator option.
Click on Show/Hide QR Code

You should now see an automatically generated QR code.

Open the Google Authenticator app on your smartphone and scan the QR code.

Alternatively, you can create the account manually. Use the description and secret key that WordPress displays for this user.

In the Google Authenticator App, you'll now find a new listing for your website. The security code is updated every 30 seconds.

Click on Update profile.

Two-factor authentication is now set up for this user. Use a new security code for each login in the future.

Write down a secret key

If you do not have access to your authenticator, you can use the secret key to link a new authenticator.

Put the secret key in a safe place. Old-fashioned but safe: Write it on a piece of paper of your choice.

THAT'S ALL THERE IS TO IT! CONGRATULATIONS, YOUR WORDPRESS WEBSITE HAS BECOME A LOT SAFER!

Was this article helpful?

Robert KneschkeShutterstock

How to add Google Analytics to WordPress

Adding Google Analytics to WordPress helps you to collect useful information about visitors to your website. This way, you can better pin down your target audience and tailor your marketing strategies to them. Here, we’ll show you how you can add Google Analytics to your…

Wordpress
Google Analytics
Tutorials

How to create an online store with WordPress and WooCommerce

In order to successfully sell products in the age of mobile internet and digital offers, having a well-functioning online store is a necessity. But how can you create your own online store without resorting to expensive help? With WordPress and WooCommerce, you can quickly and…

Wordpress
Online Store
Tutorials

How to protect WordPress login with .htaccess

Learn how to effectively protect the administration area of your WordPress blog from hackers and brute force attacks with .htaccess directory protection.

Wordpress
Tutorials

How to Change Your WordPress Username and Password

Learn how to change your WordPress username and password. With this guide we will show you how to easily change your WordPress username and/or password.

Wordpress
Data Protection
Tutorials

Reset WordPress Admin Password

Having trouble logging in to the admin area of your website and the password recovery via email option does not work? We'll show you how to change your WordPress admin password with phpMyAdmin in this article.

Wordpress
Tutorials