Joomla community powered logo

Site Slogan


← Step 1: Enable plugin | Step 2B: configure 2FA per user Front End →


2FA in Joomla - Step 2A - Two Factor Authentication in the Back End

Before you start on doing this, please be aware that all users will have to set up their own 2FA - so you can't do it for anybody else because then you will be able to impersonate them because you will also have their secret key. I will only show how to enable and configure the 2FA for front end and back end with both authentication methods for the purpose of showing you how to do this.

  1. Log in to the administrator part of your site
  2. Go to the Users Menu > User Manager

    2FA - Back End - Go To User Manager

  3. Click on the user you want to change to Two Factor Authentication and go to the last tab "Two Factor Authentication"
  4. Select the "Google Authentication" or "Yubikey" option (I will go on with the Google Authenticator part for the back end, on the front end I will elaborate on the Yubikey part)

    2FA - 3 - Back End - Select 2FA Plugin

  5. The contents of your screen have now changed completely. Now you have the key to insert in your code generator or the QR code to scan with your device to have your code generated every time you need it. If you need to know how to install the code generating programs, we also have writte a separate article on how to set up code generating apps. After you have done this, don't forget to press the Save button!

    2FA - 4 - Back End - Google Authenticator Activation

  6. Now at the lower part of the page, you get a series of one-time emergency codes. Make sure you have at least a couple of them available at any time - so write them down somewhere on a piece of paper you defend with your life or store them on a safe place on your computer.

    2FA - 5 - Back End - Google Authenticator One Time Passwords

NOTE! This site uses cookies.

If you do not change browser settings, you agree to it. Learn more

I understand


To make this site work properly, we sometimes place small data files called cookies on your device. Most big websites do this too.

What are cookies?

A cookie is a small text file that a website saves on your computer or mobile device when you visit the site. It enables the website to remember your actions and preferences (such as login, language, font size and other display preferences) over a period of time, so you don’t have to keep re-entering them whenever you come back to the site or browse from one page to another.

How do we use cookies?

A number of our pages use cookies to remember:

Also, some videos embedded in our pages use a cookie to anonymously gather statistics on how you got there and what videos you visited.

Enabling these cookies is not strictly necessary for the website to work but it will provide you with a better browsing experience. You can delete or block these cookies, but if you do that some features of this site may not work as intended.

The cookie-related information is not used to identify you personally and the pattern data is fully under our control. These cookies are not used for any purpose other than those described here.

How to control cookies

You can control and/or delete cookies as you wish – for details, see You can delete all cookies that are already on your computer and you can set most browsers to prevent them from being placed. If you do this, however, you may have to manually adjust some preferences every time you visit a site and some services and functionalities may not work.

You can find the full EU privacy guideline by clicking on this link