Enforce 2FA for editors??

Resolved the_lar
(@the_lar)

5 years, 11 months ago

Hi,

I have previously used a seperate plugin for 2FA called Google Authenticator but would like to switch to Wordfence for this… however I’m not sure whether Wordfence allows me to enforce the use of 2FA down to editors… this is a must because given the choice, I know that users are lazy and will not set it up unless forced to do so. I can only seee an option to ‘ Require 2FA for all administrators
‘ NOT editors.

Many thanks
Kevin

Viewing 10 replies - 16 through 25 (of 25 total)

← 1 2

Matt
(@mugwumpman)

4 years, 2 months ago

Hi, just to add to the others requesting this functionality. (Required 2FA for other user roles than just administrator.) Is there any update, reasoning behind it, or is there a proposed-feature page we can upvote? +1

mumu9
(@mumu9)

4 years, 1 month ago

I came here because a recent WF blog article emphasises the need to enforce user accounts security because “a large number of recently discovered vulnerabilities require subscriber-level privileges”, so I thought, why not enable 2fa for everyone?

Yeah, why not? … 🙂
stevenjc
(@stevenjc)

4 years ago
Does anyone have experiencing with using another 2fa plugin alongside Wordfence? I’m a huge Wordfence fan and am reluctant to use another login security plugin but not seeing any response on this thread from Wordfence since Jan 2019 so assuming the ability to enforce for all roles or users, either by an update to Wordfence or via a filter, isn’t going to happen.
- This reply was modified 4 years ago by stevenjc.
lyledg
(@lyledg)

4 years ago

If they can do it: https://www.wpwhitesecurity.com/wordpress-plugins/wp-2fa/

Surely you can WordFence??

Plugin Support wfscott
(@wfscott)

4 years ago

We are currently testing the 2FA requirement for non-admin roles and it will be coming in one of the next few releases, barring any setbacks with testing.

hastibe
(@hastibe)

4 years ago

@wfscott — awesome! Very happy to hear this.

stevenjc
(@stevenjc)

4 years ago

thanks for the update @wfscott, appreciated 🙂

bjf2000
(@bjf2000)

3 years, 10 months ago

Glad to hear it’s on the way. Until I saw this thread, I didn’t quite appreciate that “Enable” didn’t mean “Require.”

bjf2000
(@bjf2000)

3 years, 7 months ago

In case anyone missed it like I did (it’s not so easy to be notified of revisions for new versions unless you haunt this forum, at least that I know of), 7.5.5 added the option for requirement on any role.

stevenjc
(@stevenjc)

3 years, 7 months ago

Thanks @bjf2000 (and Wordfence team), did see that and it looks to work a treat.