Clef Two-Factor Authentication

Modern two-factor that people love to use: strong authentication without passwords or tokens; single sign on/off; magical user experience.

Download Version 2.3.1

The Clef mobile app provides password-free, two-factor authentication that is highly secure and enjoyable to use. Just sync your phone with the Clef Wave to log in. Watch the 30-sec. demo.

Our Users’ Favorite Features

No passwords: login securely with the Clef wave, and enjoy two-factor protection without one-time codes.
No extra devices: use your smartphone instead of a “third device” such as a USB drive or security key.
Single sign on/off: Sync with the Clef Wave once, then enjoy one-click sign ins for all subsequent sites. Also, sign out from all your sites with one-click any time, or set the timer to log you out automatically when you’re done working.

Security Features

Strong authentication: Clef replaces passwords with highly secure, two-factor logins using the tried-and-true RSA public-key cryptosystem.
- Clef stores your encrypted private key on your phone rather than in a central database. Thus even in the unlikely event of a catastrophic security breach on Clef’s servers, your login credentials remain secure on your phone.
- Every Clef login requires two identification factors: your phone and a fingerprint or PIN. So even if your phone is lost or stolen, you’re Clef account will remain secure.
Comprehensive protection: Clef disables passwords for all three WordPress authentication points: Dashboard access, API access, and password resets. Thus it protects against the full spectrum of password-based attack vectors:
- brute-force and botnet login attacks
- weak, leaked, and recycled passwords
- sending login credentials via an insecure (non-ssl) connection
- password phishing attempts
- account takeovers via email breaches

Configuration Features

Flexible password settings
- Disable passwords for select WordPress user roles including custom roles.
- Disable passwords for API access.
- Accommodate users who do not have smartphones.
Shortcode support: insert Clef’s “login with your phone” button or the Clef Wave in any post, page, or text widget using the clef_render_login_button shortcode.
Standards-based compatibility: Clef’s WordPress plugin adheres to WordPress coding guidelines and is thus compatible with most mainstream plugins and themes.
Internationalization and localization support: Arabic, Danish, Dutch, French, German, Greek, Japanese, Latvian, Portuguese, Russian, Spanish. More translations on the way. Help translate Clef into your language.
Multisite network support
Helpful documentation
Free email support

Tags: 2 step authentication, 2-Factor, 2FA, admin, android, authentication, encryption, harden, iphone, log in, login, mfa, mobile, multi-factor, multifactor, oauth, password, passwords, phone, secure, security, single sign-on, smartphone, ssl, sso, strong authentication, tfa, two step, two-factor, two-factor authentication, wp-admin, wp-login

Requires: 3.5 or higher
Compatible up to: 4.3.1
Last Updated: 1 month ago
Active Installs: 500,000+

Ratings

4.8 out of 5 stars

5 stars 60

4 stars 7

3 stars 0

2 stars 2

1 star 1

Authors

11 plugins

1 plugin

1 plugin

1 plugin

Donate to this plugin »

Support

3 of 8 support threads in the last two months have been resolved.

Got something to say? Need help?

View support forum

Translations

English (Canada)

Translate this plugin

Compatibility

	WordPress
+	Plugin
=	Works! Broken :( Not enough data

5 people say it works.
0 people say it's broken.

100,1,1	0,1,0
100,1,1
100,1,1
100,1,1
100,1,1
100,1,1
100,1,1	100,2,2
100,1,1
100,2,2	100,3,3
100,3,3	100,1,1	100,1,1
100,1,1
100,3,3	100,3,3
100,1,1	100,3,3	100,1,1
100,3,3
67,3,2
100,1,1
100,1,1
67,3,2
100,2,2	100,1,1
100,1,1
0,1,0	100,5,5

WordPress.org

Plugin Directory

Search Plugins

Popular Tags