Feedback on Cerber’s 2FA System Email

Hello,

I noticed that no one seems to be posting feedback, so here’s one!

First of all, thank you for the great work you are doing with Cerber. I appreciate the robustness of your security solution, but I would like to share some suggestions that could enhance the 2FA experience and usability for end users.

One-Click Backup Codes for End Users Focusing on email-based 2FA

Currently, the 2FA system does not offer backup codes for end users. Here’s a feature that could be beneficial:

One-click generation of 10 (or 5) backup codes that users can use as a bypass in case they lose access to their primary authentication method.

Each code is single-use and can be regenerated at any time by the user.**

  • Configurable expiration period (unlimited, 3 months, 6 months, 1 year, etc.).
    ##Better user experience** to prevent lockouts due to 2FA issues.

White-Label Customization for 2FA

Currently, the 2FA UI/UX in Cerber is not fully user-friendly and customizable.
A white-labeling option would allow businesses to tailor the 2FA interface to match their branding and integrate it seamlessly into their environment.
To achieve this, only a few small improvements are necessary to make it more accessible for both non-developer professionals and friendly users:

Basic color and link customization

Font size adjustments

Built-in translations like in other Cerber features

With just these simple changes, 2FA would feel more integrated and professional without adding unnecessary complexity.

Additionally, it is crucial to ensure proper accessibility when implementing UI changes. The web is also a space that must remain inclusive for people with disabilities. Taking care of HTML semantic structure and accessibility tags (ARIA, labels, proper contrast ratios) would allow 2FA to be truly universal.

Frontend 2FA Integration

The ability to implement 2FA authentication directly on the frontend, rather than limiting it to the WordPress admin panel.
This would significantly enhance the experience for community sites, marketplaces, or SaaS platforms running on WordPress.

The Strength of Cerber’s 2FA and Its Unique Implementation
As a developer, I see the great strength of Cerber’s 2FA system in how it granularly integrates user rights and throttle control. Unlike other solutions, Cerber does not dissociate access control from security, making it both highly secure and seamlessly integrated into the existing permission structure.

Another major advantage of Cerber’s approach is its modular yet enforced implementation—there is no need to ask users if they want 2FA; it can be made mandatory without complex configuration. This modularity is a key strength, and expanding it further would only increase the product’s value.

The Need for Bypass Codes in the Era of AI, Cloud, and Unstable Email Providers

In today’s landscape—where AI, cloud solutions, and third-party providers often introduce unexpected failures—having a bypass solution is no longer a convenience but a necessity.

Many providers suffer from temporary downtime, affecting email deliverability and causing login issues.

  • A failed 2FA verification due to email unavailability can lead to unwanted account lockouts and frustration.
  • Allowing users to have pre-generated backup codes ensures a smooth authentication flow without compromising security

A More Realistic Approach to 2FA for Non-Developers

It is important to acknowledge that most non-developers do not use classic SSO systems or mobile token generators.

  • The adoption of these systems is still limited, and by the time they become mainstream, the technology itself might be outdated.
  • For a more accessible and user-friendly experience, email-based 2FA remains the most widely used method in modest and friendly systems.
  • Providing a strong yet simple 2FA experience ensures that security is enforced without alienating the majority of users.

I believe these improvements would add great value to your solution and further enhance security while making the user experience much more intuitive.

Looking forward to your feedback!:blush:

1 Like

I opened an account only to add my voice for your suggested improvements.
Especially the ability to customize front end interface and also e-mail format.
I am using WP Cerber 2FA only for admin/shop manager roles… as for customers I had to use another 2FA plugin because it has these features otherwise I would stick with the feature in WP Ceber in case they make it easy for us to customize the appearance and allow customers generating backup codes and so

This year, we’re bringing a range of new features to WP Cerber, making 2FA more flexible and user-friendly than ever before. Here is our roadmap for WP Cerber’s 2FA that will be available in the professional version:

  1. Backup codes for emergency access – One-click generation of single-use backup codes to prevent lockouts if users lose access to their primary 2FA method. These codes can be regenerated anytime and have a configurable expiration period (unlimited, 3 months, 6 months, 1 year).
  2. User-managed 2FA activation – Empower users to enable and configure 2FA for their own accounts directly from the frontend (public-facing pages using WordPress shortcodes) without administrator intervention. This brings greater security and flexibility to multi-user websites.
  3. White-labeling options for 2FA customization – Customizable colors, fonts, and links to seamlessly match the website’s branding, along with built-in translations for effortless localization and a polished, professional user experience.

Stay tuned. I promise, WP Cerber will continue to evolve, giving you more control, stronger protection, and a best-in-class 2FA experience.

P.S. Use LLMs and chatbots for content creation thoughtfully and sparingly. If you’re a robot, whether AGI or not, your account must clearly indicate this. :passport_control: