Page MenuHomePhabricator

Add 2FA to new website
Open, Needs TriagePublic

Description

Task
We should enable 2FA for our wordpress site. https://www.wpwhitesecurity.com/best-two-factor-authentication-plugins-wordpress/ lists a few free such plugins.

Since we all have Google Authenticator installed for 2FA elsewhere we should probably go with that one.

We want to manually set this as required for all Administrators and likely also all "redaktör"

What's been done

  • Evelina has installed Two-Factor, a plugin for two factor authentication.
    • One of the options for 2FA is Google Authenticator.
    • Another option is to get a code to your email address.
  • Evelina has enabled 2FA via e-mail for all administrators and editors.
  • Evelina has sent an e-mail about this to the staff.

How to change from 2FA via email to Google Authenticator

  1. Log on to your account (wikimedia.se/login) and go to your profile.
  2. Scroll to Two-Factor Options and uncheck Email.
  3. Check Time Based One-Time Password (Google Authenticator).
  4. Scan the QR code with your Google Authenticator app.

Related Objects

StatusAssignedTask
OpenEvelina-Bang-WMSE
OpenNone

Event Timeline

Evelina-Bang-WMSE updated the task description. (Show Details)

@Evelina-Bang-WMSE I sent out a reminder to the 4 users who have yet to switch

@Evelina-Bang-WMSE We should document the above steps somewhere (on wiki). Probably linked from any info about adding a new employee as a user.

Lokal_Profil moved this task from Backlog to In progress on the WMSE (IT) board.

@Evelina-Bang-WMSE I sent out a reminder to the 4 users who have yet to switch

I pinged the 3 people left to do this