Two Factor Authentication 2FA for Joomla

Introduction

Authentication, Login protection, Access & Security, Site Security, Site Access

Two Factor authentication / Multi factor authentication (2FA/MFA) – The Joomla website login process is entirely secure thanks to the Two Factor Authentication plugin. You can use authentication methods like the Google Authenticator, Microsoft Authenticator, and Duo Authenticator, and all the TOTP methods. Additionally, OTP over SMS, OTP over email, OTP over WhatsApp, OTP over Telegram, and many other methods are supported by this plugin.


Two Factor Authentication (2FA) / Multi Factor Authentication (MFA)

Boost the user and login page security on your Joomla website. The best way to protect against automated password guessing, and brute force attacks is to enable two-factor authentication (2FA").

All Features

  • 15+ Two factor authentication methods including Google, Duo, Microsoft, Okta and All TOTP Authenticators.
  • Role Based Two Factor Authentication.
  • Domain Based Two Factor Authentication.
  • IP Whitelisting (2FA will not invoke for given IPs)
  • Two Factor Authentication supports login using:
    • Login using Username + Password + 2FA
    • Login using Username + 2FA (Passwordless login)
    • Login using Email + Password + 2FA
    • Login using Email + 2FA (Passwordless login)
    • Login using Phone number + Password + 2FA
    • Login using Phone number + 2FA (Passwordless login)
  • 2FA supports in-line user registration, so you can just activate and configure the plugin and you're ready to go.
  • Soft Token, QR Code Authentication, Push Notification are supported by miniOrange Authenticator App.
  • Supported TOTP (time based one time password) MFA methods: Google Authenticator, Duo Authenticator, Authy Authenticator, Microsoft Authenticator and LastPass Authenticator.
  • If you want to login from the mobile browser then any authentication method can be converted into Security Questions (KBA) by just one click.
  • We support multi-factor authentication for all types of phones like smartphones (iOS, Android, BlackBerry), Basic Phones, Landlines, etc.

Supported 2FA / MFA authentication methods [ Video Library ]

1) Phone/Email based authentication
- OTP (One-Time Passcode) over SMS
- OTP over Email
- OTP over SMS and Email (same OTP will be send over SMS and Email)
- OTP over Call (Phone Verification)
- OTP over WhatsApp (Coming soon)

2) TOTP (Time Based One Time Password) Apps
- Google Authenticator [ Setup Guide ] [ Video Setup ]
- Duo Authenticator [ Setup Guide ] [ Video Setup ]
- Microsoft Authenticator[ Setup Guide ] [ Video Setup ]
- Okta Verify Authenticator [ Setup Guide ] [ Video Setup ]
- Authy 2-Factor Authenticator [ Setup Guide ] [ Video Setup ]
- LastPass Authenticator [ Setup Guide ] [ Video Setup ]
- miniOrange Authenticator [ Setup Guide ] [ Video Setup ]
- Contact us if you need any other app.

3) Other
- Security Questions (KBA)
- Back-up codes
- USB based Hardware token (yubikey)
- Mobile Authentication (QR Code authentication)
- Push Notification (User will receive Accept and Deny transaction popup on phone)
- Soft Token (similar to Google authenticator)

You can choose from any of the above two-factor Authentication (MFA) methods to increase your password-based authentication.

Premium Version features

  • Role based 2FA
  • Enforce 2FA registration for users
  • Select 2FA methods to be configure by end users
  • Passwordless Login
  • Backup security questions (KBA)
  • Add your own KBA/Security questions
  • Backup codes
  • Enable login by email address
  • Redirect URL (After login)
  • Change app name in Google authenticator app
  • Customize Email Templates
  • Customize SMS Templates
  • Customize OTP length and validity
  • Remember Device (available soon)
  • IP specific 2FA (Whitelisting IP Address)
  • End to End 2FA Integration**

Installation Steps :

  • Goto Extensions --> Manage --> Install.
  • Search for miniOrange 2FA in the search box
  • Install the miniorange Two Factor Authentication plugin.
  • Then go to Extensions --> Manage --> Manage.
  • Search for 2FA in the search box
  • Enable all the extensions present in the list.
  • Configure the plugin at Component-> miniOrange Two Factor Authentication ->Setup Two Factor

What makes Joomla Two Factor Authentication (TFA) special?

Our 2FA plugin supports more than 15 authentication methods along with their backup method.
2FA supports Device Identification. If the user selects Remember device then on the next login from the same device, the user will not be prompted for Two Factor.
It is very difficult to log in to your site from the mobile browser with Two Factor enabled. We provide you with the option that will convert any authentication method into Security Questions(KBA) on a mobile browser.

What is Passwordless Login (Sign-in) (Authentication) to Joomla :-

Passwordless Login (Sign-in) (Authentication) allows users to log in without the need of remembering a password. Instead of conventional username and password, users enter mobile phone number or email address to receive a one-time code (one time password) or link on their phone number or their email address, which they can then use for log in.

Custom feature requirements -

If you want any custom changes or features in this plugin, let us know your requirement on joomlasupport@xecurify.com and we will add that feature in the plugin for you.

SAML SSO for Joomla
Free

SAML SSO for Joomla

By miniOrange
Access & Security
Joomla SAML Single Sign-On (SSO) – SAML SSO Login Authentication | Login to Joomla Joomla Single Sign-On (SSO) is an authentication process in which a user can log in to multiple applications and/or websites by using only a single set of login credentials (such as username and password). This prevents the need for the user to log in separately to the different applications. Joomla Single-Sign-O...
SAML 2.0 IDP for Joomla
Free

SAML 2.0 IDP for Joomla

By miniOrange
Access & Security
Login using Joomla Users ( Joomla as SAML IDP ) provides SAML functionality for Joomla SSO. - SAML Identity Provider plugin acts as a SAML 2.0 Identity Provider (IDP) which can be configured to establish the trust between the Joomla site and various SAML 2.0 supported Service Providers to securely authenticate the user using the Joomla site credentials. Login with Joomla allows users residing in...
miniOrange OAuth Client
Free

miniOrange OAuth Client

By miniOrange
Access & Security
Joomla OAuth Single Sign-On (SSO) | Login into Joomla using OpenID Connect Joomla Single Sign-On ( Joomla SSO OAuth 2.0 ) with OAuth & OpenID Connect plugin allows unlimited SSO / login ( Single Sign-On ) with your Azure AD, Azure B2C, Office 365, WSO2,Clever,AWS Cognito, Ping Federate, Keycloak,WHMCS,Okta,LinkedIn,Onelogin,Salesforce,Invision Community,Slack, Amazon, Discord, Twitter, G Suite /...
OTP Verification For Joomla
Free

OTP Verification For Joomla

By miniOrange
Security Tools
OTP Verification for User registration. OTP (One time passcode) Verification plugin verifies the Email Address/Mobile Number of users by sending verification code (OTP) during registration through our Email verification and SMS verification features. This plugin removes the possibility of a user registering with a fake Email Address/Mobile Number or disposable emails. Ten free email and ten free...
LDAP Integration with Active Directory and OpenLDAP - NTLM & Kerberos Login
Free

LDAP Integration with Active Directory and OpenLDAP - NTLM & Kerberos Login

By miniOrange
Access & Security
LDAP Integration with Active Directory and OpenLDAP - NTLM & Kerberos Login plugin provides login to Joomla using credentials stored in your LDAP Server. It allows users to authenticate against various LDAP implementations like 1. Microsoft Active Directory 2. Azure Active Directory 3. Sun Active Directory 4. OpenLDAP Directory 5. JumpCloud 6. FreeIPA Directory 7. Synology 8. OpenDS 9. and several...
Social Login by miniOrange
Free

Social Login by miniOrange

By miniOrange
Social Media
Social Login by miniOrange is a Joomla extension that allows your visitors to comment, share, login, and register with many Social Media applications like for example Facebook, Twitter, Vkontakte, Google, LinkedIn, WindowsLive, Instagram, Salesforce and Amazon. Social Login by miniOrange is a Joomla extension that allows your visitors to comment, share, login, and register with many Social Media...
Import Export Users for Joomla
Free

Import Export Users for Joomla

By miniOrange
Users Import & Export
Import Export Users for Joomla – The Joomla Import Export Users plugin allows the import and export of Joomla users quickly and easily. User export and user import are much-required features while moving Joomla sites. Your Joomla users can be imported and exported from Joomla 3. x to Joomla 4. x and vice versa. Additionally, you can import users from any other websites or CMS into your Joomla...
Web Security Lite– Secure Login and Backup for Joomla
Free

Web Security Lite– Secure Login and Backup for Joomla

By miniOrange
Access & Security
Website Security Secure Login and Registration for Joomla - The Joomla website security plugin is a top-notch security extension for Joomla that guards against invasions and hackers trying to access your site. You can also use this extension to regulate who can access your site and also it blocks IP addresses where strange behavior is observed. It also includes a malware scanner, login & spam pro...
Session Management | Session Control
Paid download

Session Management | Session Control

By miniOrange
Site Access
Session Management for Joomla – Joomla Session management plugin allows you to manage the session timeout for your users. You can easily maintain the session time out or prevent session from destroying based on Joomla groups. Features :- Remember my device – This feature allows the user's device to remember the user session such that they don't have to login again when they visit the s...
Custom Gateway OTP Verification | User Verification on Registration
Paid download

Custom Gateway OTP Verification | User Verification on Registration

By miniOrange
Access & Security
OTP Verification using Custom Gateway for User registration. OTP (One time passcode) Verification Custom gateway plugin plugin verifies the Email Address/Mobile Number of users by sending verification code (OTP) using your gateway during registration through our Email verification and SMS verification features. This plugin removes the possibility of a user registering with a fake Email Address/Mo...
Login using Phone number | Email | Username
Paid download

Login using Phone number | Email | Username

By miniOrange
Site Access
Login using Phone number / Email / Username for Joomla – Joomla Login using phone number or email or username allows you to modify the login option for your users. You can allow your users to login using their phone number or email or username. Also it allows you to restrict the login option for the users. Free Version Features:- Unlimited users export - Import Export plugin helps you to ex...
Page and Article Restriction
Paid download

Page and Article Restriction

By miniOrange
Access & Security
Page and Article Restriction for Joomla miniOrange Joomla Page and Article Restriction plugin allows you to restrict the access of particular pages/ articles or URLs and redirects those pages to either Joomla’s default login page, IDP login page, custom URLs or shows custom error messages according to your configuration. To know more about Page and Article Restriction for Joomla click here JO...
Role Based Redirection/Access
Paid download

Role Based Redirection/Access

By miniOrange
Access & Security
Role-Based Redirection in Joomla miniOrange Role Based Redirection plugin can be used to restrict and redirect users to different URLs based on the Joomla user's role. By using this plugin you can redirect your users to a particular URL after log in and logout based on the role/group of that user. To know more about Role-based redirection/access click here JOOMLA ROLE-BASED REDIRECTION / ACCESS...
OAuth Single Sign-On - OIDC SSO | Login with Azure AD
Free

OAuth Single Sign-On - OIDC SSO | Login with Azure AD

By miniOrange
Access & Security
Azure AD Single Sign-On - OAuth OIDC SSO | Login with Azure AD (Joomla as a OAuth Client / OpenID Connect) **Azure AD Single Sign-On - OAuth OpenID Connect SSO | Login with Azure AD plugin allows unlimited SSO / login ( Single Sign-On ) with your Azure AD,Azure B2C, and Office 365 account credentials. OAuth Single Sign-On - OIDC SSO | Login with Azure AD plugin supports SSO with Microsoft Azure...
Sweet Alert for Joomla
Free

Sweet Alert for Joomla

By miniOrange
Popups & iFrames
**miniOrange Sweet Alert **Plugin replaces all the System Messages of Joomla with proper modal windows and display the pop-ups depending on message type using Sweet Alert And It also provides you the Short Codes so you can use them anywhere on your site. It is easy to configure and allows you customize the style of the Sweet Alert and also allow you to handle the timelimit and animation for pop-up...
SCIM User Provisioning for Joomla
Free

SCIM User Provisioning for Joomla

By miniOrange
User Management
User Sync / User Provisioning / User Management SCIM User Sync/provisioning plugin provides Automated user synchronization from the identity provider to Joomla. SCIM User Provisioning provides SCIM (System for Cross-domain Identity Management) capability to your Joomla site, converting it to a SCIM compliant endpoint that can be configured with any identity provider supporting SCIM protocol. As...
SAML SSO login with Google Apps
Free

SAML SSO login with Google Apps

By miniOrange
Access & Security
SAML SSO – Login with Google Apps / Gsuite Now Secure your website login by Google Apps Login which allows Single Sign-On (SSO) to Joomla using Google credentials (Gsuite) for your users or employees. Google Apps Login uses Google credentials to provide a better experience compared to Joomla login options. For example – Users can do One-Click Login to Joomla account with their Google Credentia...
SAML SP Single Sign On – Login with ADFS
Free

SAML SP Single Sign On – Login with ADFS

By miniOrange
Access & Security
SAML SP Single Sign On – Login with ADFS allows users with ADFS Directory apps account to login to your Joomla website with ADFS. It acts as a SAML 2.0 Service Provider which can be configured to establish the trust between the plugin and ADFS Directory apps to securely authenticate the user to the Joomla site. Login with ADFS uses the latest secure SAML authentication recommended by ADFS, inc...
OAuth Server for Joomla
Free

OAuth Server for Joomla

By miniOrange
Access & Security
** SSO (OAuth 2.0) – OAuth Server/ Provider Single Sign-On – The plugin allows users to log in to your client apps using their joomla account credentials. It enables you to utilise Joomla as an OAuth Server/Provider and provide OAuth APIs for resource access. This OAuth server/OAuth Provider plugin's main objective is to allow users to perform a single sign-on using their Joomla credentials in...

Two Factor Authentication 2FA for Joomla

Version:
3.0.0
Developer:
miniOrange
Last updated:
Aug 26 2022
3 months ago
Date added:
Jan 24 2020
License:
GPLv2 or later
Type:
Free download
Includes:
c p
Compatibility:
J3 J4
Download

Uses Joomla! Update System