Notakey Provider for Two-Factor

plugin banner

Reduce friction and improve security of Two-Factor Authentication using push-based Notakey Authenticator mobile application.

Author:Notakey Latvia (profile at wordpress.org)
WordPress version required:4.3
WordPress version tested:6.0.1
Plugin version:1.0.17
Added to WordPress repository:31-05-2022
Last updated:20-07-2022
Rating, %:100
Rated by:1
Plugin URI:https://github.com/notakey/wordpress-two-fact...
Total downloads:3 873
plugin download
Click to start download

Users with enabled Notakey authentication provider will be sent authentication request to registered mobile device (phone, tablet) after entering a valid username and password.

This plugin requires WordPress Two-Factor plugin, that provides base authentication framework. After installing and configuring both plugins, an additional authentication provider will be added to provider list. To register a mobile device for Notakey authentication, use the “Two-Factor Options” section under “Users” → “Your Profile”. Install “Notakey Authenticator” and scan provided QR code with Notakey app and enter required details for device registeration.

Notakey authentication can be combined with other second factor authentication means: TOTP, email, backup codes and others.

This plugin adds also some basic security policy options for WordPress site admins:

  • Enable 2FA provider override list – allows users to select only specified authentication providers.

  • Enable Notakey 2FA provider for all users – enables Notakey authentication for all users (in case your users have devices already registered on other services).

  • Allow users to provide onboarding details – lets users enter their mobile number, if SMS code verification onboarding is used.

  • Reject user login without 2FA verification – blocks user login without any second factor authentication.

Other configuration options include:

  • Various options to customize authentication request.

  • Configuration for Notakey Authentication Server.

To adjust policy or configure this plugin, navigate to “Settings” → “Notakey MFA”.

Plugin requires a hosted or on-premise version of Notakey Authentication Server (yes, there is a free version) with configured service, onboarding requirements and API client credentials.

See our documentation site for detailed instructions how to set up Notakey Authentication Server.

Get Involved

Development happens on GitHub.

Here is how to get started:

git clone https://github.com/notakey/wordpress-two-factor.git

Start development by starting a devcontainer.

Then open a pull request with the suggested changes.

Screenshots
ChangeLog