How to configure Joomla MFA On-premise Extension

Overview

Securing user access is critical for every Joomla-powered organization, and our Joomla MFA On-premise Extension is designed to make that process seamless, scalable, and highly reliable. This guide walks you through configuring multi-factor authentication step-by-step, ensuring your Joomla site is protected with modern, enterprise-grade security. Whether you're enabling OTP-based 2FA, enforcing MFA for specific user groups, or integrating with existing identity systems, this guide will help you set up the extension quickly and confidently.

Configuration Steps

In this setup guide, we will show you how to configure our miniOrange Joomla MFA Extension.

Step 1: Install Joomla MFA On-premise Extension

• Login into your Joomla site’s Administrator console.
• From left toggle menu, click on System, then under Install section click on Extensions.

• Now click on Or Browse for file button to locate and install the plugin file downloaded earlier.

• Installation of plugin is successful. Now click on Start Using miniOrange 2FA plugin button.

Step 2: Configure Joomla MFA On-premise Extension

• In the Account Setup tab, enter your miniOrange account credentials then click on the Login button.

• Enter the license key in the given field, tick the check box and then click on Activate License button.

• First lets enable OTP Verification during Registration for new users:
• Go to the Settings tab, here in the Verification Settings under OTP Verification section.
• Click on the Enable OTP Verification toggle button to enable the feature.
• Then, select your preferred Verification Method from the dropdown, then click on the Save Settings button.

• Now you can enable Domain Restriction and block certain Country Codes from Registration to your site by enabling the features and entering the email domians and country codes in the given field.

• Now go to the MFA Settings tab. Here, you can enable MFA for you Joomla site and configure various MFA related settings.
• Turn on MFA on your Joomla site by enabling Enable MFA during login option. You can then select if you want to enable MFA for the frontend, backend, or both from the dropdown menu next to it.
• Enable MFA for new users during Registration by toggling on Enable MFA during registration button.



• You can also configure other MFA settings and enabling the respective options as explained below:
• Allow users to skip MFA setup: Users can bypass the MFA setup menu without configuring MFA on their account.
• Allow users to change their MFA method: Users can select their preferred method which setting up MFA.
• Remember trusted devices: After successfully performing MFA on a device, the next time they won't have to perform MFA again when loggin into the same device.
• Enable Passwordless Login: Users can login to their account using only their username.
• Allow specific roles to setup MFA: Enable MFA for only specific roles such as "Administrator".
• Allow Backup Methods: Set up backup methods to login into the account in case of an issue with MFA.
• Finally click on the Save Settings button, to save your configuration.
• Under Advance Settings bypass MFA for trusted IPs and domains by whitelisting the IP addresses and domain names. Enter the addresses and domains in the given fields.

• Now go to the User Management tab, here you can see all the users who have configured MFA. Click on the Actions button to reset MFA for the respective user.

• You have successfully configured multi-factor authentication on your Joomla site using our miniOrange MFA On-premise Extension. If you have any more queries. please contact us at joomlasupport@xecurify.com.