How to Set Up Two-Factor Authentication (2FA) with Google Authenticator

Keeping your website secure is extremely important. One of the best ways to protect your WordPress login is by using Two-Factor Authentication (2FA).

Many of the websites I manage through SiteGround have 2FA enabled. This adds an extra layer of protection — even if someone guesses or steals your password, they still cannot log in without a special verification code from your phone.

This guide will walk you through how to set up 2FA using the Google Authenticator app.

What is Two-Factor Authentication?

Two-Factor Authentication means you log in using:

1. Something you know → your password

2. Something you have → your phone (a temporary security code)

This greatly reduces the risk of hacking or unauthorized access.

---

Step 1: Install the Google Authenticator App

You will need to install the free Google Authenticator app on your phone.

Download here:

• iPhone / iPad (Apple App Store):
  https://apps.apple.com/us/app/google-authenticator/id388497605

• Android (Google Play Store):
  https://play.google.com/store/apps/details?id=com.google.android.apps.authenticator2

Install the app before continuing.

Step 2: Log in to Your WordPress Website

Go to your website login page:

Enter your username and password as usual.

If 2FA has been enabled on your account, you will now be prompted to connect your authenticator app.

Step 3: Scan the QR Code

On the 2FA setup screen:

1. Open the Google Authenticator app

2. Tap the + (plus) icon

3. Choose Scan QR Code

4. Point your phone camera at the QR code shown on your website screen

Your website will now appear in the app.

Step 4: Enter the Verification Code

After scanning:

• The app will generate a 6-digit code

• Enter this code into the website to confirm setup

Important:
These codes change every 30 seconds, so enter it promptly.

Step 5: Save Your Backup Codes

During setup, you may be given backup codes.

These are extremely important.

• Save them in a secure place (password manager, printed copy, etc.)

• You can use them if you lose your phone or cannot access the app

How Logging In Works After Setup

Each time you log in:

1. Enter username and password

2. Open Google Authenticator

3. Enter the current 6-digit code

That’s it — quick and secure.

What If You Get a New Phone or Lose Access?

If you cannot access your authenticator app:

• Contact me and I can help reset 2FA access

• This is why saving backup codes is very important

Why I Require or Recommend 2FA

Websites are constantly targeted by automated login attempts.
Two-Factor Authentication:

• Protects your site content

• Prevents malware and spam issues

• Protects customer data (if applicable)

• Reduces emergency fixes and downtime

It is one of the simplest and most effective security steps you can take.

Need Help?

If you have trouble setting up 2FA or logging in, feel free to reach out.
I’m happy to help.

-ew