Configure Joomla Two-factor Authentication (Google-Authenticator)

What is Two Factor Authentication ?

Two-Factor Authentication (2FA) also called two-step verification is a security process in which a user has to pass two different authentication factors to gain access to an account or a computer system.

Two Factor Authentication 2FA for Joomla plugin is highly secure & easy to set up for your Joomla site. Rather than relying on a password alone, which can be phished or guessed. miniOrange adds a second layer of security to your Joomla accounts. It protects your site from hacks and unauthorized login attempts. This plugin also includes a secure method for Multi-Factor Authentication (MFA).

How does Two-Factor authentication (2FA) work ?

Firstly, the user navigates to the login page of the application or a website. For instance www.example.com/login.
User enters a username and password. User’s login credentials are checked by their respective server. This is the first factor of authentication.
The site then prompts the user with the 2nd step authentication E.g Pop up asking for OTP sent over SMS /Email.
When the user enters the second factor like OTP or Push notification it is checked against the database system if the second factor is correct.
After successfully completing the 2nd factor authentication user is granted access to the application or a website.

Google Authenticator generates two-step verification codes on your phone. 2-Step Verification provides stronger security for your Google Account by requiring a second step of verification when you sign in. In addition to your password, you'll also need a code generated by the Google Authenticator app on your phone.

Use Google Authenticator with multiple accounts or devices:- Google Authenticator can issue codes for multiple accounts from the same mobile device. Each Google Account needs a different secret key.

Step 1: Install miniOrange 2-Factor authentication Plugin

Download the zip file for the miniOrange 2-Factor authenticationient plugin for Joomla from the link here.
On your Joomla admin console go to Extensions Manage Install

Under Upload Package File tab. Drag the downloaded file OR upload file by click on browse for file

Go to Components miniorange Two Factor authentication

Step 2: Configure Google Authenticator 2FA method

Register/Login with miniOrange.

Navigate to Setup Second Factor tab. Select Google Authenticator and click on the Configure link.
Download and install Google Authenticator app. Click on Next.

Joomla 2FA Download and install Google Authenticator App

Scan the QR code in Google Authenticator app OR enter Secret Code manually. Then click on Next.

Enter passcode from Google Authenticator app and click on Verify button.

You have successfully Configured Google Authenticator 2FA method. Then click on Test to verify.

Enter Passcode from Google Authenticator app and click on Validate button.

You have successfully configured Google Authenticator 2FA method.

Joomla 2FA Successfully configured Google Authenticator method

Your choice of second factor

miniOrange 2-factor Plugin is extendable to use any of the following 2FA methods. If you want to have any other 2-factor for your Joomla site, Contact Us.