WordPress.org

Plugin Directory

2-Step Verification by BestWebSoft – WordPress Anti-spam and Anti Hacker Plugin

2-Step Verification by BestWebSoft – WordPress Anti-spam and Anti Hacker Plugin

Description

2-Step Verification plugin is the best security solution that protects your WordPress website from phishing and passwords stealing. Each user can configure their profile settings and add additional verification step to the login form.

Protect your WordPress website with 2-Step Verification now!

View Demo

Free Features

  • Add 2-Step Verification to the default WordPress Login form
  • Enable verification methods:
    • Authenticator app code
    • Email code
    • Backup codes
    • SMS code
    • Secret question
  • Select the user roles that can use 2-Step Verification
    • All user roles
    • Administrator
  • Enable 2-step verification option for user account on the personal profile page
  • Set the expiration time for:
    • Email code
    • Authenticator code
  • Enable email notifications about failed verification attempt
  • Add custom code via plugin settings page
  • Compatible with latest WordPress version
  • Incredibly simple settings for fast setup without modifying code
  • Detailed step-by-step documentation and videos
  • RTL ready

Pro Features

All features from Free version included plus:

  • Add 2-Step Verification to:
    • WooCommerce
      • Login form
      • Register form
      • Reset password form
    • BuddyPress
      • Login form
      • Register form
      • Reset password form
  • Select specific user roles 2-Step Verification will be available for
  • Customize email notifications subject and message
  • Сonfigure all subsites on the network
  • Get answer to your support question within one business day (Support Policy)

Upgrade to Pro Now

If you have a feature suggestion or idea you’d like to see in the plugin, we’d love to hear about it! Suggest a Feature

Documentation

Help & Support

Visit our Help Center if you have any questions, our friendly Support Team is happy to help – https://support.bestwebsoft.com/

Translation

  • Polish (pl_PL) (thanks to Trui)
  • Russian (ru_RU)
  • Ukrainian (uk)

Some of these translations are not complete. We are constantly adding new features which should be translated. If you would like to create your own language pack or update the existing one, you can send the text of PO and MO files to BestWebSoft and we’ll add it to the plugin. You can download the latest version of the program for work with PO and MO files Poedit.

Recommended Plugins

  • Updater – Automatically check and update WordPress website core with all installed plugins and themes to the latest versions.
  • SMTP – Configure SMTP server to receive email messages from WordPress to Gmail, Yahoo, Hotmail and other services.

Captures d’écran

  • 2-Step Verification on the Login page.
  • 2-Step Verification on the profile page.
  • 2-Step Verification settings page.
  • 2-Step Verification settings which allow to customize email messages.
  • 2-Step Verification on the Lost password page.
  • 2-Step Verification on the Register page.

Installation

  1. Upload the bws-google-2-step-verification folder to /wp-content/plugins/ directory.
  2. Activate the plugin using the ‘Plugins’ menu in your WordPress admin panel.
  3. You can adjust the necessary settings using your WordPress admin panel in « Dashboard » > « 2-Step ».

FAQ

I am trying to setup the Authenticator app, but always get « Wrong code, try again » message?

Please make sure that the time on your web-server corresponds to the world UTC time. GMT offset doesn’t matter.
You can also set larger value for the « Authenticator Time Window » option on the plugin settings page to allow some time drifting.

I have enabled the « Email » verification method and/or « Failed Attempt Notifications » option on the profile page, but no emails are coming?

Please follow the instructions below:

  1. Email messages can be marked as spam on the server.
  2. Perhaps email sending is not set. You should install an extra plugin called SMTP by BestWebSoft and configure it. Afterwards you should open the « Send A Test Email » tab on the plugin settings page, check an option « Display log », send a test email and you will see if the plugin logs have errors.

2-Step Verification not displayed on my Login form. Why?

Probably, your theme uses custom Login form. Follow the next steps in order to add 2-Step Verification to a custom Login form on your WordPress website:
1. Install the 2-Step Verification plugin and activate it.
2. Open the file (PHP or HTML) with the form (where you would like to add 2-Step Verification to).
3. Insert the following line to display the 2-Step Verification.

For PHP:

do_action( 'gglstpvrfctn_custom_login_form' );

For HTML:

<?php do_action( 'gglstpvrfctn_custom_login_form' ); ?>

I have some problems with the plugin’s work. What Information should I provide to receive proper support?

Please make sure that the problem hasn’t been discussed yet on our forum (https://support.bestwebsoft.com). If no, please provide the following data along with your problem’s description:

  1. the link to the page where the problem occurs
  2. the name of the plugin and its version. If you are using a pro version – your order number.
  3. the version of your WordPress installation
  4. copy and paste into the message your system status report. Please read more here: Instruction on System Status

Avis

20 mars 2018
I’m a fan of Google Authenticator, so was very pleased to find this plugin. The only thing I would add is the ability to write down a ‘backup code’ when enabling 2FA – not a big problem, since you print or save the QR code somewhere safe, which effectively serves as the backup code.
9 septembre 2017
Had a problem with another 2-step verification plugin after updating to php 7.0. This one works great. I’m only using the free version but it’s all I need for now. I also like that the user interface blends nicely with my wp login page. Set up is easy and simple as well.
Lire les 2 avis

Contributeurs/contributrices & développeurs/développeuses

« 2-Step Verification by BestWebSoft – WordPress Anti-spam and Anti Hacker Plugin » est un logiciel libre. Les personnes suivantes ont contribué à cette extension.

Contributeurs

“2-Step Verification by BestWebSoft – WordPress Anti-spam and Anti Hacker Plugin” a été traduit dans 2 locales. Remerciez l’équipe de traduction pour ses contributions.

Traduisez « 2-Step Verification by BestWebSoft – WordPress Anti-spam and Anti Hacker Plugin » dans votre langue.

Le développement vous intéresse ?

Parcourir le code, consulter le SVN dépôt, ou s’inscrire au journal de développement par RSS.

Journal

V1.1.1 – 24.05.2024

  • Bugfix : Compatibility with Woocommerce login and registration form has been fixed.
  • Update : All functionality for WordPress 6.5 was updated.
  • Update : BWS Panel section is updated.

V1.1.0 – 26.04.2022

  • Bugfix : Deactivation Feedback fix.

V1.0.9 – 22.03.2022

  • Update : Functionality for WordPress 5.9 was updated.
  • Update : BWS Panel section is updated.

V1.0.8 – 12.03.2021

  • NEW : Ability to edit authentication via email and SMS verificatication for users from administrator profile.
  • Update : In SMS verification implemented invisible recaptcha instead of recaptcha v2.
  • Update : All functionality for WordPress 5.7 was updated.
  • Update : BWS Panel section is updated.
  • Bugfix : Settings page issue was fixed.
  • Bugfix : SMS verification was fixed.

V1.0.7 – 04.02.2021

  • NEW : Ability 2-step authentication via email to the new user by default.
  • NEW : The Polish language file is added.
  • Update : The plugin settings page has been updated.
  • Update : All functionality for WordPress 5.6.1 was updated.
  • Update : BWS Panel section is updated.

V1.0.6 – 19.12.2019

  • Update : Plugin was renamed.
  • Bugfix : Vulnerabilities and security issues were fixed.

V1.0.5 – 01.11.2019

  • NEW : Verification via secret question code has been added.
  • Pro : The compatibility with Woocomerce, Buddypress reset and register forms has been added.

V1.0.4 – 05.09.2019

  • Update : The deactivation feedback has been changed. Misleading buttons have been removed.

V1.0.3 – 24.10.2018

  • NEW : Verification option via SMS code has been added.

V1.0.2 – 02.03.2018

  • Update : The functionality of the code re-sending was improved.

V1.0.1 – 05.01.2018

  • Update : All functionality for WordPress 4.9.1 was updated.

V1.0.0 – 30.06.2017

  • NEW : Plugin has been released.