Go to Dashboard > Settings > Modules and enable the Two-Factor Authentication module. After enabling the module, the two-factor authentication feature will be activated on your website.Users will be not forced to enable 2FA. Users who wish to enhance their account security can activate it by navigating to Profile > Settings > Security.
For users to activate two-factor authentication, the staff must first enable the two-factor authentication module from the Modules. After that, users can activate two-factor authentication from their account security settings.
Go to Profile > Settings > Security.
Enable the “Two-Factor Authentication”.
Scan the QR code with the Google Authenticator app.
Enter the code generated by the Google Authenticator app in the “Code” field and click the “Verify” button.
If the code is correct, two-factor authentication will be activated. Now, every time you log in, you will be asked to enter the code generated by the Google Authenticator app.
How to disable two-factor authentication on the database?
If you have lost your phone or cannot access the Google Authenticator app as a staff member, you can disable the two-factor authentication module from the database by following these steps:
Connect to your database. (phpMyAdmin, MySQL Workbench, etc.)
Choose your database.
Run the following SQL query:
Copy
UPDATE Modules SET `isEnabled` = '0' WHERE `slug` = 'tfa';