Powered by Adobe Commerce 2.4.3

This extension is in our Payment category, and could affect the PCI compliance level of your store. It is the merchant’s responsibility to ensure the proper PCI compliance level of their store, as applicable by PCI regulations. The PCI Self-Assessment is one tool you can use when evaluating Payment extensions and how they may affect your PCI compliance level. For more information on Marketplace policies, please review the Marketplace Terms & Conditions.

Two-Factor Authentification



Back to top

Mageplaza's Two-Factor Authentication extension (2FA) is the most up-to-date tool. The aim of creating this module is to tighten the security system in order to reduce the risks of information hacks, data breaches, which will cause obstruction to the whole business. Although there is no flow of revenue, the Two-Factor Authentication is still a great module to assist the e-commerce system to operate smoothly.

Why it is important to employ two-factor authentication in your store backend:

  • To strengthen the protection for backend: Adding an additional level of security is necessary when anyone attempts to log in to the backend. This will build up a strong defense wall for the admin account as well as store information.  
  • To enhance admin experience: Store employees who have the admin role are able to access through mobile devices conveniently and still able to ensure the store data being protected. The administrators will have a better chance to execute their job tasks professionally.  
  • To reduce the cost of management: With the help of this module, the store owner will never have to spend extra money to purchase extra software or resetting passwords. This is a smart and economical way to benefit businesses.



  • Second authentication to access admin accounts
  • Force admins to use 2FA 
  • Admins are allowed to set trusted time and trusted device
  • Gain support when using an app for mobile authentication
  • Display in numerous kinds of screen types 


Highlight Features

Access Via Two Steps

  • Obligatory to use the Two-Factor Authentication: The store owner is allowed to require admins pass through two steps of verification to enter store data. At the first step, the username and password are required. The second step will ask admins to enter a unique authentication code. If admin users fail to pass, they will be banned from access. The feature helps to safely protect data of the store.      
  • Support with apps for mobile authentication: The extension is supported to compatible with the mobile authentication app. In detail, apps like Authy, Google Authentication will assist the admin in entering the 2FA by confirming the code via scanning QR or using a manual key. When finishing the registration, the apps will give them a special code each time an admin logs in.    
  • Trust This Device 
  • Turn on the Trust-Device Function, limit trusted time: This is one of the main features in this extension, which helps to avoid forcing admins to login repetitively each time they want to access store backend. The account of a specific device will be trusted within a specific time period such as 30 days, 60 days, or more.
  • Access the second time without authentication code: After admins login the first time successfully, within the given time period of trusted time, the second attempts to login will be faster without entering the authentication code. This feature is created with the aim of saving time for admins who have reliable accounts.


List Of Trusted Devices

The trusted devices list will be simply managed to check the verified admins. Moreover, key admins and owners are able to delete any admin accounts from the list in case there are any changes in the store workforce. Two-Factor Authentication will assure to protect the admin panel from outside access. The list will clearly view the admin information including details like:  

  • Device Name
  • IP address
  • Address
  • Last login time


More Features

Mandatory To Use 2FA 

Owners will easily turn on/off the 2FA registration.


Set Trusted Time

Allow setting numbers of days for the trusted period.


Friendly With Mobiles

It is designed to be well displayed by mobiles, desktops, tablets, and other screen types.


Full Feature List

Admin Account Setting 2FA

  • Able to set account information: User name, Email, Password
  • Allow enabling/disabling the account
  • Input the authentication app’s confirmation code
  • Insert different authentication code for certain time login
  • Allow saving the second authentication confirmation by clicking on trust this device when login
  • View the list for Trusted Device
  • Allow removing admin accounts from the Trusted Device List


General Configuration

  • Allow enabling/disabling the module
  • Set 2FA as a requirement for admin login   
  • Turn on/off the Trusted Device 
  • Set days of a trusted period



User Guide | Installation Guide 

Technical Specifications

Back to top

Seller profile


Seller contact



Current Version


Adobe Commerce platform compatibility

Open Source (CE): 2.3 (current)

Commerce on prem (EE): 2.3 (current), 2.2 (obsolete)


Stable Build


03 January, 2020


Extensions, Payments & Security, Fraud

Quality Report

Back to top

Installation & Varnish Tests


Coding Standard


Plagiarism Check


Malware Check


Marketing Review


Manual Testing


All tests were conducted on the latest versions of Adobe Commerce that existed for the compatible release lines at the moment of the extension submission. Latest versions of all other software were used, as applicable.

Release Notes

Back to top


  • Compatible with Open Source (CE) : 2.3
  • Compatible with Commerce on prem (EE) : 2.2 2.3
  • Stability: Stable Build
  • Description:

    Initial release


Back to top

The best place to start if you need help with a specific extension is to contact the developer. All Adobe Commerce developers have both a contact email and a support email listed.

Contact Vendor

Q & A

Back to top


Back to top