Setup OTP over SMS and Email as 2FA/MFA for Drupal
Two-factor authentication (2FA) plays a key role in securing Drupal accounts against password breaches by adding an additional layer of security. By following this document you can configure OTP Over SMS and Email as a Two Factor Authentication - TFA method for Drupal account. An OTP - one-time passcode is generated when a user tries to log into Drupal site with their usual account credentials and sent via email and text SMS to registered phone number.
The Drupal Two Factor Authentication -
2FA / Passwordless Login is available for Drupal 7, Drupal 8, Drupal 9 and Drupal 10.
Configure OTP Over SMS and Email Verification as 2FA
Once the module is installed navigate to the Configuration section in the admin console of
Drupal site and click on miniOrange Second Factor under people section.
Register/Login with your miniOrange account.
Navigate to the Setup Two Factor tab and scroll down to the OTP (One Time Passcode) based 2FA methods
Click on the Configure button next to OTP over SMS and Email.
Enter the mobile number in Phone Number text field and click on Request OTP. (The email will be automatically fetched.)
Enter the OTP which you have received on registered phone number and email, then click on Verify button.
You have successfully configured OTP Over SMS and Email - 2FA method.
Open a new browser/private window and navigate to the login page of the Drupal site.
Login with the Drupal credentials.
You will be receive OTP on your registered phone number and email.
Enter the OTP and click on the Verify button.
If the authentication is successful you will be logged in to the Drupal site.
Explore the advanced features offered by the module with full-featured trial. You can initiate the trial request
Request 7-day trial button under Register/Login tab of the module or reach out to
us at firstname.lastname@example.org for
one-on-one assistance from Drupal expert.
miniOrange has successfully catered to the use cases of 400+ trusted customers with its highly flexible/customizable Drupal solutions. Feel free to check out some of our unique case studies using this link.
If you dont hear from us within 24 hours, please feel free to send a follow up email to email@example.com
This privacy statement applies to miniorange websites describing how we handle the personal
When you visit any website, it may store or retrieve the information on your browser, mostly in the
form of the cookies. This information might be about you, your preferences or your device and is
mostly used to make the site work as you expect it to. The information does not directly identify
you, but it can give you a more personalized web experience.
Click on the category headings to check how we handle the cookies.
Strictly Necessary Cookies
Necessary cookies help make a website fully usable by enabling the basic functions like site
navigation, logging in, filling forms, etc. The cookies used for the functionality do not store any
personal identifiable information. However, some parts of the website will not work properly without
These cookies only collect aggregated information about the traffic of the website including -
visitors, sources, page clicks and views, etc. This allows us to know more about our most and least
popular pages along with users' interaction on the actionable elements and hence letting us improve
the performance of our website as well as our services.