2FA Site Lockout!

  • Resolved merk7

    (@merk7)


    5 years, 7 months ago

    I have 2FA setup when logging into the administration page of my website. The WordPress code generator has disappeared from my Authenticator app and I cannot find the printed recovery codes. Is there another way to access my site or download the 2FA code generator?

Viewing 5 replies - 1 through 5 (of 5 total)
  • Plugin Support KokkieH

    (@kokkieh)

    Hi there,

    Jetpack does not offer any 2FA functionality, so this has nothing to do with Jetpack and we can’t help with this.

    Please contact support for the specific 2FA plugin you’re using on your site.

    You might also be able to log in by manually deleting that plugin via FTP at your host, but for help with that you’ll have to contact your hosting provider.

    Thread Starter merk7

    (@merk7)

    Thanks for your help.

    Jetpack does not offer any 2FA functionality,

    @kokkieh

    Doesn’t Jetpack offer WordPress.com Secure Sign On, which can require Two-Step Authentication?

    https://jetpack.com/support/sso/

    If you’d like to improve the security of Secure Sign On, you can choose to force Two-Step Authentication when users log in via WordPress.com. Here is the line of code that you’ll need:

    add_filter( ‘jetpack_sso_require_two_step’, ‘__return_true’ );

    Note: This filter only requires that logging in via WordPress.com requires Two-Step Authentication. If you only return true for this filter, then a user could still log in via the default log in form. If you would like to enforce Two-Step Authentication for your site, you could combine the jetpack_sso_require_two_step filter with the jetpack_remove_login_form filter to force users to log in with WordPress.com and use an account with Two-Step Authentication.

    Plugin Support KokkieH

    (@kokkieh)

    @yig SSO uses 2FA, but that uses the 2FA on the WordPress.com account login, not on the site’s own login page at wp-login.php. So once you’re logged into your WordPress.com account, you can log into WP-Admin with a single click on the “Log in with WordPress.com” button. You don’t get asked for a 2FA code again.

    As the OP mentions, “I have 2FA setup when logging into the administration page of my website”, it sounds like they’re trying to log into the admin account directly rather than via WordPress.com/SSO.

    For help with 2FA on a WordPress.com account you’ll need to contact WordPress.com support directly, either via https://wordpress.com/help/contact or the account recovery process at https://en.support.wordpress.com/account-recovery/

    Thanks @kokkieh , I don’t know what exactly the OP had meant to ask, but that means Jetpack does offer some two-step authentication functionality.

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘2FA Site Lockout!’ is closed to new replies.