Function and Purpose
With 2FA, users need to sign in not only with a username and password but also enter a one-time code. This code is generated by an authenticator app and is only valid for a short time. That makes unauthorized access much harder.
Setup
- Enable the plugin: Activate the “Two-Factor Authentication – TOTP” plugin in the backend.
- User profile: Each user can set up 2FA in their profile, scan a QR code, and generate backup codes.
- Options: From Joomla 4.2 onward, multi-factor authentication (MFA) is also available to include additional methods.
Important Notes
- Security: Enable 2FA at least for administrators and Super Users.
- Backup codes: Keep backup codes stored securely to restore access if the smartphone is lost.
- Usability: Inform users about the login process and make the setup easy for them.
