Trusona for WordPress Plugin

Trusona provides the most popular passwordless 2FA login for FREE. Just point your phone to the secure QR code and voila – you are in.

Top Features

• FREE passwordless MFA including support
• Hide username and password from login form
• Login without typing or remembering passwords
• NEW: Trusona ONLY Mode – get rid of the password fields FOREVER!
• Dynamic QR code displayed at login
• No SMS or OTP (one-time passwords)
• Patented anti-replay for added security
• One-click installation

What is the Cost?

Trusona’s passwordless 2FA is completely FREE – just download it today and start using it with one-click install. Support is included. We really mean it – it is totally FREE.

How do I know it is secure?

73% of WordPress sites are vulnerable to attack – and passwords are most likely to blame. Trusona’s passwordless 2FA for WordPress is based on the most secure technology you will ever use. And now you can experience this level of true security for your WordPress accounts, too. In this version we added a Trusona ONLY mode in settings. This feature does not allow to show the user name and password fields. Setting this page to this mode is the most secure approach. Only recommended to advanced users.

Please note:

Once you download the Trusona WordPress Plugin you need to download the Trusona app. To download for iOS, visit the App Store. For Android devices, visit Google Play.

Quick Start

Getting started with Trusona’s passwordless 2FA plugin is easy. Check-out our step-by-step getting started video.

If downloading from a browser:

1. Download and install the Trusona WordPress plugin. Click Activate.

2. On the top header, you will see the email address that you should enter when you register in the Trusona app.

3. Download and install the Trusona app. To download for iOS, visit the App Store. For Android devices, visit Google Play.

4. Follow the prompts to register within the Trusona app. Make sure to register with the same email address shown in step 2.

5. Return to your WordPress account and logout. When you log back in, you will see the “Login With Trusona” button.

6. Click “Login With Trusona” and the secure QR code will appear. Open the Trusona app on your mobile device and scan the QR code that is displayed.

7. Click “Accept” in the Trusona app.

8. Use your OS security (Face ID, Biometric or Device Lock) to confirm your True Persona.

9. And voila! You logged in to your WordPress admin account without needing a password!

10. Optional: in settings, set to Trusona ONLY mode.

What does it cost?

Nothing. Trusona’s WordPress plugin is 100% FREE and can be used on all of your WordPress sites.

Is support included?

Yes, support is included. Please visit support.trusona.com

Where can I find more information on Trusona?

Visit our website at www.trusona.com

Does this plugin work with the WordPress REST API?

No, at this moment, the plugin will not work with the WordPress REST API.

1. 

   Separate factors from friction. More security doesn’t mean more UX hoops.

2. 

   A people-ready user experience.

3. 

   End session replay attacks with the world's first patented Anti-Replay Technology.

4. 

   Go beyond the security of password-dependent MFA.

5. 

   Security that works is security that people don’t work around.

= 1.6.3
* Verifies functionality on WordPress 6.3

= 1.6.0
* Verifies functionality on WordPress 6.0

= 1.5.5
* Verifies functionality on WordPress 5.8

= 1.5.4
* Verifies functionality on WordPress 5.7

= 1.5.3
* Verifies functionality on WordPress 5.5
* Fixes bug introduced in WordPress 5.5 by explicitly enabling the password field when it is visible.

= 1.5.2
* Verifies functionality on WordPress 5.4.2

= 1.5.1
* Changed buttons to mention “Login With Trusona”
* Added Trusona ONLY mode
* Improve searchability based on “passwordless”

= 1.5.0
* Verifies received JWT tokens – fails authentication otherwise
* Verifies functionality on WordPress 5.3.2

= 1.4.6
* Tested upto WordPress version 5.2.2

= 1.4.5
* Updating message shown to user if they are not registered in WP site.

= 1.4.4
* Tested upto WordPress version 5.1

1.4.3

• Bug fixing

1.4.2

• Verifying functionality with WordPress 5.0.x

1.4.1

• Bug fixing

1.4.0

• Adding self-service onboarding feature

1.3.1

• Bug fixing

1.3.0

• Bug fixing

1.2.4

• Updating readme text

1.2.3

• Verifying functionality on latest WordPress version 4.9.7
• Updating image resources

1.2.2

• Adding PHP and WordPress versions on settings view for debugging purposes.

1.2.1

• Verifying support for WordPress version 4.9

1.2.0

• Updated login button to use new Trusona logo and colors

1.1.8

• No longer loading jQuery hosted by Google; instead using the version enqueued by WordPress.

1.1.7

• Add portability between testing and production environments with dynamic registration when a change is detected.

1.1.6

• Add filters to modify locked down form variables

1.1.5

• Readme updates

1.1.4

• Version update

1.1.3

• Fixing login CSS

1.1.2

• Bug fix

1.1.1

• Bug fix

1.1.0

• Added Settings link. Implemented single setting for Trusona-ONLY Mode, which is off by default.

1.0.16

• Fixing bug that affects PHP 5.3.29

1.0.15

• Update to readme regarding highest supported version of WP

1.0.14

• Update to readme regarding availability of Trusona for Android

1.0.13

• Fixing possible race condition when a Trusona user’s email addresses are registered with several account types on a WP site.

1.0.12

• Fixed links within readme file

1.0.11

• Updated the plugin’s readme file

1.0.10

• Updated ‘login with trusona’ button CSS

1.0.9

• More CSS cleanup

1.0.8

• Fixing CSS bug related to display of buttons
• CSS cleanup

1.0.7

• Update to verbiage within activation notice

1.0.6

• Now showing notice, on activation, of email address to use in Trusona app
• Updated readme

1.0.5

• No longer enqueing jquery

1.0.4

• Removing unused filter

1.0.3

• Removed dead code; renamed custom function

1.0.2

• Fixed login form bug

1.0.1

• Added support for legacy PHP versions down to 5.3.2

1.0

• Initial release. Join the #NoPasswords revolution.