Two-Factor Authentication

A brute-force attack is the most common hacking attempt on WordPress sites.  In this type of attack hackers try to guess your username and password using many (often hundreds or even thousands) of computers, referred to as a botnet.  The best defense against a brute-force attack is to use a unique and complicated password and have 2FA enabled.  

Two-Factor Authentication (2FA) is an additional login security measure that prompts for a second login credential after you enter your correct username and password.  For an attacker to login to a site with 2FA enabled they must have both the password and the user’s One Time Password (OTP).  A Wordfence OTP is a random number that changes every 30 seconds and is based on a secret key and the current time.     

2FA Setup

  1. You will need a computer and your mobile device.
  2. Open Authy on your mobile device.  If you do not have Authy installed, go to the App Store or Google Play Store on your mobile phone and install it. 
    (If preferred, you can also use Google Authenticator, FreeOTP, DUO, etc.  Most time-based OTP apps are compatible.)
  3. Follow the on-screen setup instructions.  You will be asked for your phone number and email address.  Allow all prompts for permission.  
  4. Tap Add Account
  5. Tap Scan QR Code
  6. On your computer, open your web browser and login to the WP Admin at https://your-website-here/wp-admin
  7. Login if prompted
  8. Click on Profile or Users > Profile in the left menu.
  9. Scroll down to the bottom of the page and click on Activate 2FA
  10. Point the phone’s camera at the QR Code displayed on your computer
  11. Tap Save
  12. Enter the 6 digit code from Authy into the box under 2. Enter Code from Authenticator App on your computer
  13. Click Activate
  14. Download your recovery codes and save them in a safe place.  You can use your recovery codes if you forget or lose your phone.
  15. Logout of WordPress
  16. Login to WordPress
  17. When prompted for your 2FA code, enter the 6 digit number displayed in Authy.

Blog Roll

graphic designer lindsey kelly

Estland Welcomes Lindsey Kelly

Please join us in welcoming Lindsey Kelly to the Estland team!
Austin Raines, Graphic Designer

Estland Welcomes Austin Raines

We are excited to announce the addition of a talented and passionate designer to our team.
Closeup of smartphone with privacy app

How Apple’s Privacy Changes In iOS 15 Will Affect Your Business

Apple has released its newest operating system, iOS 15. Find out how the many privacy changes could affect your business.
Professional photography of Euliss employee at work

Increase Your Leads 45%: Why Professional Photography Is Better Than Stock

Find out why choosing professional photography instead of stock images could increase your leads by 45%.
Shot of hacker phishing

Protect Your Business From Scams: Learn How To Recognize Phishing

Phishing can be a simple scam but has long-lasting effects. Protect your business by familiarizing yourself with the way phishers operate and how to combat them.
Closeup of woman typing

Track Email Deliverability With Postmark

Sign up for our new email deliverability tracking service to make sure that your customers receive every email that you send.
bounce rate

High Bounce Rate? Why That Might Be A Good Thing.

Common wisdom says that a high bounce rate is bad, but that's not always the case! Find out why a high bounce rate may be a good sign.
COVID-flyer-office

Reopening? Communicate With Your Customers About What You Are Doing To Keep Them Safe

If you silenced your social media presence, you should begin sharing your reopening plans as soon as possible.
Woman recording herself cooking

Is Your Business Taking Advantage of Facebook Live?

How can your business leverage Facebook Live to offer your current and prospective customers useful information, entertainment, or services?