Setup OTP over Email as 2FA/MFA for Drupal
Overview
Two-factor authentication (2FA) plays a key role in securing Drupal accounts against password breaches by adding an additional layer of security. By following this document you can configure OTP Over Email as a Two Factor Authentication - TFA method for Drupal account. An OTP - one-time passcode is generated when a user tries to log into Drupal site with their usual account credentials and sent via registered email. The Drupal Two Factor Authentication - 2FA / Passwordless Login is available for Drupal 7, Drupal 8, Drupal 9 and Drupal 10, and Drupal 11.
Installation Steps
- Using Composer
- Using Drush
- Manual Installation
Configuration Steps
Configure OTP over Email as a 2FA method:
- Once the module is installed navigate to the Configuration section in the admin console of Drupal site and click on miniOrange Second Factor under people section. (/admin/config/people/miniorange_2fa/setup_twofactor)
- Register/Login with your miniOrange account.
- Navigate to the Setup Two Factor tab and scroll down to the OTP (One Time Passcode) based 2FA methods section.
- Click on the Activate button next to OTP over Email.
You have successfully configured OTP Over Email - 2FA method.
Verify 2FA:
- Open a new browser/private window and navigate to the login page of the Drupal site.
- Try Login with the Drupal credentials.
- You will be receive OTP on your registered email.
- Enter the OTP and click on the Verify button.
- If the authentication is successful you will be logged in to the Drupal site.
Additional Features:
Explore the advanced features offered by the module with full-featured trial. You can initiate the trial request using Request 7-day trial button under Register/Login tab of the module or reach out to us at drupalsupport@xecurify.com for one-on-one assistance from Drupal expert.
- Passwordless Login
- Role Based 2FA (Enable 2FA for specific roles)
- Domain Based 2FA
- Remember My Device