How to setup Email Verification for 2-Factor Authentication | WordPress
The email verification method of two-factor authentication (2FA) works by sending a transaction link to the user’s registered email address.
Initiate Transaction:
This initiates transaction mail is sent when a user attempts to log in to their WordPress account.
Email Content:
This email contains a link with options to “Accept” or “Deny” the transaction.
Verification:
If the user clicks “Accept,” the transaction proceeds. If they click “Deny,” the transaction is blocked.
This method ensures that only the person with access to the registered email can approve these sensitive actions, adding an extra layer of security.
Numerous two-factor authentication methods are available with the miniOrange Two-Factor Authentication Plugin. For instance:-
- Universal support to all TOTP Authenticator App
- OTP by SMS
- OTP Via Email
Why should you choose the Email Verification method for your WordPress site?
- Ease of Use: Clicking on the link to accept and deny upon receiving the transaction link is pretty simple.
- Non-Reliance on Mobile Networks: As long as a user has internet access, they can receive codes.
Let's start the Email Verification setup with the miniOrange Two-Factor Authentication plugin to make the user's account secure.
You can download miniOrange 2-Factor Authentication(2FA) plugin using the following link:
This plugin can be configured for any TOTP-based/OTP Login 2fa methods like Duo/Microsoft/Google Authenticator. It supports OTP login based 2fa methods [24/7 SUPPORT]
Pre-requisites For Setting Up Email Verification as a 2FA method.
Make sure you have the following before configuring two-factor authentication:-
- To enable Email Verification on your WordPress website, install the miniOrange WordPress 2FA plugin.
- Make sure your WordPress website is set up to send emails, either using an external SMTP service (such as SendGrid, Mailgun, or SMTP plugins) or the built-in WordPress email feature.
Getting started with the Email Verification/SMS Authentication setup
Let’s see how an administrator can set up Email Verification for users. This can be done in two very simple ways:-
- Setup Wizard
- Dashboard of the plugin
1. Email Verification setup through Setup Wizard
The setup wizard appears right after the successful installation and activation of the WordPress 2FA plugin. The Wizard helps you set up 2FA(in this case Email Verification)
Let’s follow the steps below to set up the Email Verification method as 2FA for your users.
- Click on the Let’s get started! button.
- Choose the first option “User should setup 2FA during first login.”
Choosing this option as name suggests will make user’s compulsorily configure 2FA methods (in this case Email Verification). - Click on the Continue Setup button.
- Choose the ”All users” option to set 2FA for all and click on the Continue Setup button.
- Choose only for a specific roles option.
- Select the particular role for which you want to set 2FA. (As administrator has been chosen here. This will set the Email Verification method as 2FA only for the administrator's role.)
- Then, click on the Continue Setup button.
- Choose the “Users should be directly enforced for 2FA Setup” option and click on the All Done button.
- You have successfully configured the two-factor authentication.
Step 1: Once you have activated the plugin the following screen of the setup wizard appears.
Step 2: The wizard guides you to choose any one option for inline registration.
There are two option under inline registration:-
Step 3: Next you are guided to choose the user’s role for which you want to set Email Verification as a 2FA method.
OR
Step 4: Now, it guides you to set the Grace period for your users. There are again two options:-
1. Users should be directly enforced for 2FA Setup:- If you don’t want to give your users any period to set 2FA you can go with the first option.
Users will have to set 2FA during their first login to gain access to the account.
2. Give users a grace period to configure 2FA:- choosing this option will allow you to give your users a certain grace period within which users will be required to set their 2FA. Users will have to set 2FA after the expiration of the grace period.
Steps for users to configure Email Verification
After the above setting of 2FA with a few easy steps, users are prompted to configure a list of two-factor authentication methods including Email Verification.
- Navigate to the WordPress Login page and enter the user’s login credentials.
- Choose the “Email Verification” radio button. You are prompted to configure a two-factor method while logging in for the very first time.
- The email verification link is sent to your email address registered with the WordPress account.
- Click on the Accept Transaction or you can Deny Transaction if it's not you.
- The following success window is prompted indicating that your email verification is successful.
- Click on the Finish button to finish it.
- Navigate back to your WordPress account, you will find that you have successfully logged into the account.
- Go to the WordPress Login page and enter the user’s(in this case admin) credentials to login.
- Email verification link is sent is sent to your email address registered with the WordPress account.
- Click on the Accept Transaction or you can Deny Transaction if it's not you.
- The following success window is prompted indicating that your email verification is successful.
- Navigate back to your WordPress account, you will find that you have successfully logged into the account.
Now you must carefully store the backup codes provided to you. These codes will help you login when you become locked out of your account for any reason.
Subsequent Login for user’s account through Email Verification
Let’s see how user's subsequently login to their account after the configuration of Email Verification during the first login.
2. Email Verification setup from plugin dashboard
- Enable 2FA for the all the roles for which you need to set 2FA.
- Then, click on the Save Settings button.
If you have choose to Skip Setup Wizard, here's an alternate way to setup Email Verification through the plugin dashboard.
After clicking on the Skip Setup Wizard option, you will be redirected to the plugin dashbord i.e., the Login Settings tab of the two-factor authentication menu where you can enable 2FA for all the desired roles.
Steps for users to configure Email Verification
- Go to the WordPress login page and enter the user’s login credentials.
- Choose the “Email Verification” radio button. You are prompted to configure a two-factor method while logging in for the very first time.
- The email verification link is sent to your email address registered with the WordPress account.
- Click on the Accept Transaction or you can Deny Transaction if it's not you.
- The following success window is prompted indicating that your email verification is successful.
- Click on the Finish button to finish it.
- Navigate back to your WordPress account, you will find that you have successfully logged into the account.
- Enter your login credentials and click on the Login button.
- Email verification link is sent is sent to your email address registered with the WordPress account.
- Click on the Accept Transaction or you can Deny Transaction if it's not you.
- The following success window is prompted indicating that your email verification is successful.
- Navigate back to your WordPress account, you will find that you have successfully logged into the account.
Now you must carefully store the backup codes provided to you. These codes will help you login when you become locked out of your account for any reason.
Subsequent Login for user’s account through Email Verification
Let’s see how user's subsequently login to their account after configuration of Email Verification during first login.
Need Help? We are right here!
