Two Factor Authentication 2FA for Joomla

Introduction

Authentication, Login protection, Access & Security, Site Security, Site Access

Two Factor Authentication 2FA for Joomla plugin secures your Joomla login with an additional layer of security. This plugin provides two-factor authentication ( TFA ) during login. Click here to know more about the Joomla 2FA plugin. This plugin provides more than 15 2fa methods to configure including Google Authenticator, OTP Over SMS, OTP Over Email, Yubikey, Microsoft Authenticator, LastPass Authenticator, and many more.


Two Factor Authentication ( 2FA ) for Joomla

Two Factor Authentication 2FA for Joomla plugin is highly secure & easy to set up for your Joomla site. Rather than relying on a password alone, which can be phished or guessed. miniOrange adds a second layer of security to your Joomla accounts. It protects your site from hacks and unauthorized login attempts. This plugin also includes a secure method for Multifactor Authentication (MFA).

Dependencies

  • NONE

24/7 Support

In case you face any issues or if you have any questions, please feel free to reach out to us on our 24*7 active support at joomlasupport@xecurify.com or Contact us.

Key Features

  • 15+ 2nd factor authentication methods including Google Authenticator
  • Role-Based 2nd-factor authentication
  • Domain Based 2nd-factor authentication
  • IP Whitelisting ( 2FA will not invoke for given IPs )
  • Two Factor Authentication supports login using username + password + 2FA or username + 2FA.
  • Login with email + password + 2FA or Username + password + 2FA.
  • Alter default login form details of Joomla like Username title, description, etc.
  • If your phone is lost or stolen or discharged, we offer alternate login methods like Security Questions(KBA), OTP Over Email.
  • 2FA offers inline registration of users so you can simply activate and configure the module and you are all set.
  • Soft Token, QR Code Authentication, Push Notification is supported by miniOrange Authenticator App.
  • Supported TOTP (time-based one time password) MFA methods: Google Authenticator, Authy Authenticator, Microsoft Authenticator and LastPass Authenticator, DUO Authenticator
  • We can add all other authenticators on request.
  • If you want to login from the mobile browser then any authentication method can be converted into Security Questions (KBA) by just one click.
  • We support multi-factor authentication for all types of phones like smartphones (iOS, Android, BlackBerry), Basic Phones, Landlines, etc.
  • Backup Methods: KBA(Security Questions), OTP Over Email. Backup codes for all the Two Factor Authentication(TFA) methods like Google Authenticator, etc.
  • Customize account name in Google Authenticator App.
  • Email Notification to the users asking them to set up Two Factor Authentication.
  • Remember device for all methods like Google Authenticator, Mobile Verification with SMS, etc.
  • Allow Specific 2FA methods to Configure in Inline Registration.
  • Change or Reconfigure the 2FA method.
  • Redirect to specific URL after Login
  • User Management: To reset the User’s 2FA method.

Supported 2FA / MFA authentication methods:

  1. OTP OVER EMAIL – Users will receive a One Time Passcode (OTP) on their registered email ID.
  2. OTP OVER SMS - Users will receive an OTP on their registered mobile number.
  3. OTP OVER SMS AND EMAIL - Same OTP will be sent over SMS and Email.
  4. OTP over Call - Users will receive an OTP over phone call on their registered mobile number.
  5. Google Authenticator - Enter passcode generated by Google Authenticator App to login.
  6. Authy 2-Factor Authenticator - Enter passcode generated by Authy 2-Factor Authenticator App to login.
  7. Microsoft Authenticator - Enter passcode generated by Microsoft Authenticator App to login.
  8. LastPass Authenticator - Enter passcode generated by LastPass Authenticator App to login.
  9. DUO Authenticator - Enter passcode generated by Duo Authenticator App to login.
  10. Email Verification - User will receive Accept and Deny transaction link on Email.
  11. Soft Token - Users can enter a one-time passcode from the miniOrange Authenticator App.
  12. QR code authentication - Scan the QR code from the account in your miniOrange Authenticator App to login.
  13. Push notification - Accept a push notification in your miniOrange Authenticator App to login.
  14. OTP over WhatsApp - Users will receive an OTP on WhatsApp.
  15. USB based Hardware token (yubikey)

TOTP (time-based one-time password) Apps Supported by Joomla Two Factor Authentication

  • Google Authenticator App.
  • Authy 2-Factor Authenticator App
  • Microsoft Authenticator App
  • LastPass Authenticator App
  • DUO Authenticator App.
  • miniOrange Authenticator App
  • Contact us if you need any other app.

How is Joomla Two Factor Authentication (TFA) different?

  • 2FA supports more than 15 authentication methods along with their backup method.
  • 2FA supports Device Identification. If the user selects Remember device then on the next login from the same device, the user will not be prompted for Two Factor.
  • It is very difficult to log in to your site from the mobile browser with Two Factor enabled. We provide you with the option that will convert any authentication method into Security Questions(KBA) on a mobile browser.

Free/Premium Version

  • By default, the miniOrange Two Factor Authentication (TFA) module is free for 1 user (administrator) forever. (Telephony credits are needed for certain authentication methods like Phone Verification, OTP over SMS, etc).
  • In order to protect more accounts or use premium features, you need to upgrade to the premium version of the module.
  • Besides including all authentication methods, it has inline registration for all users, user management dashboard access, remember device, manage device profiles, customize options for Email and SMS templates, custom redirect after login, customized UI for login screens, and many more. You can upgrade to the premium version of the module to have these features.

Installation Steps :

  • Goto Extensions --> Manage --> Install.
  • Search for miniOrange 2FA in the search box
  • Install the miniorange Two Factor Authentication plugin.
  • Then go to Extensions --> Manage --> Manage.
  • Search for miniorange in the search box
  • Enable all the extensions present in the list.
  • Configure the plugin at Component-> miniorange two-factor authentication ->setup two factor

Custom feature requirements -

If you want any custom changes/feature in this plugin, let us know your requirement on joomlasupport@xecurify.com and we will add that feature in the plugin for you.

SAML SSO for Joomla
Free

SAML SSO for Joomla

By miniOrange
Access & Security
JOOMLA SAML SINGLE SIGN ON (SSO) Joomla Single Sign-On (SSO) is an authentication process in which a user can login to multiple applications and/or websites by using only a single set of login credentials (such as username and password). This prevents the need for the user to login separately into the different applications. Joomla Single-Sign-On addresses the challenge of maintaining the credenti...
SAML 2.0 IDP for Joomla
Free

SAML 2.0 IDP for Joomla

By miniOrange
Access & Security
Login using Joomla Users ( Joomla as SAML IDP ) provides SAML functionality for Joomla SSO. - SAML Identity Provider plugin acts as a SAML 2.0 Identity Provider (IDP) which can be configured to establish the trust between the Joomla site and various SAML 2.0 supported Service Providers to securely authenticate the user using the Joomla site credentials. Login with Joomla allows users residing in...
Social Login by miniOrange
Free

Social Login by miniOrange

By miniOrange
Social Media
Social Login by miniOrange is a Joomla extension that allows your visitors to comment, share, login, and register with many Social Media applications like for example Facebook, Twitter, Vkontakte, Google, LinkedIn, WindowsLive, Instagram, Salesforce and Amazon. Social Login by miniOrange is a Joomla extension that allows your visitors to comment, share, login, and register with many Social Media...
miniOrange OAuth Client
Free

miniOrange OAuth Client

By miniOrange
Access & Security
OAuth Client Single Sign-On – SSO (OAuth 2.0) plugin allows users residing at OAuth 2.0 capable OAuth or OpenID Connect (OIDC) Provider to log in to your Joomla website. We support all known OAuth Providers – Azure AD, Azure AD B2C, Google Apps, AWS Cognito, Facebook, Instagram, KeyCloak, Linkedin, Bitrix24, Fitbit, Reddit, WSO2, Office 365, Azure AD, Clever, Ping, Keycloak, WHMCS, Okta, Onelo...
LDAP Integration with Active Directory and OpenLDAP - NTLM & Kerberos Login
Free

LDAP Integration with Active Directory and OpenLDAP - NTLM & Kerberos Login

By miniOrange
Access & Security
LDAP Integration with Active Directory and OpenLDAP - NTLM & Kerberos Login plugin provides login to Joomla using credentials stored in your LDAP Server. It allows users to authenticate against various LDAP implementations like 1. Microsoft Active Directory 2. Azure Active Directory 3. Sun Active Directory 4. OpenLDAP Directory 5. JumpCloud 6. FreeIPA Directory 7. Synology 8. OpenDS 9. and several...
OTP Verification For Joomla
Free

OTP Verification For Joomla

By miniOrange
Security Tools
Email Verification / SMS Verification / OTP Verification plugin verifies the Email Address/Mobile Number of users by sending verification code(OTP) during registration. It removes the possibility of a user registering with a fake Email Address/Mobile Number. This plugin checks the existence of the Email Address/Mobile Number and the ability of a user to access that Email Address/Mobile Number. Fre...
OAuth Server for Joomla
Free

OAuth Server for Joomla

By miniOrange
Access & Security
OAuth Server Single Sign-On – SSO (OAuth 2.0) -The plugin allows users to reside in your Joomla site to login to your client apps. It allows you to use Joomla as your OAuth Server/Provider and access OAuth APIs. The primary goal of this OAuth server/OAuth Provider plugin is to allow users to interact with Joomla sites without requiring them to store sensitive credentials. STEP BY STEP GUIDES TO...
Web Security Lite– Secure Login and Backup for Joomla
Free

Web Security Lite– Secure Login and Backup for Joomla

By miniOrange
Access & Security
Web Security Lite– Secure Login and Backup for Joomla - miniOrange Joomla website/network security combines Web Application Firewall (WAF), Limit Login Attempts, Encrypted Database backup with recovery, and Login Protection with Two Factor and Spam Protection. Building a website is a time-consuming process that requires tremendous efforts. For smooth functioning and protection from any sort of...
SAML SP Single Sign On – Login with ADFS
Free

SAML SP Single Sign On – Login with ADFS

By miniOrange
Access & Security
SAML SP Single Sign On – Login with ADFS allows users with ADFS Directory apps account to login to your Joomla website with ADFS. It acts as a SAML 2.0 Service Provider which can be configured to establish the trust between the plugin and ADFS Directory apps to securely authenticate the user to the Joomla site. Login with ADFS uses the latest secure SAML authentication recommended by ADFS, inc...
SAML SSO login with Google Apps
Free

SAML SSO login with Google Apps

By miniOrange
Access & Security
SAML SSO – Login with Google Apps / Gsuite Now Secure your website login by Google Apps Login which allows Single Sign On (SSO) to Joomla using Google credentials (Gsuite) for your users or employees. Google Apps Login uses Google credentials to provide a better experience compared to Joomla login options. For example – User can do One-Click Login to Joomla account with their Google Credential...
SCIM User Provisioning for Joomla
Free

SCIM User Provisioning for Joomla

By miniOrange
User Management
SCIM User provisioning provides Automated user synchronization from the identity provider to Joomla. SCIM User provisioning provides SCIM (System for Cross-domain Identity Management) capability to your Joomla site, converting it to a SCIM compliant endpoint that can be configured with any identity provider supporting SCIM protocol. As in Identity Provider, we can add user, update user, and dele...

Two Factor Authentication 2FA for Joomla

Version:
1.0.4
Developer:
miniOrange
Last updated:
Jul 12 2021
2 weeks ago
Date added:
Jan 24 2020
License:
GPLv2 or later
Type:
Free download
Includes:
c p
Compatibility:
J3 J4 Alpha
Download

Uses Joomla! Update System