The LoginTC Joomla plugs adds an additional step to user authentication using LoginTC two-factor authentication. After successfully entering a username and password, the user’s mobile device receives a LoginTC request (via push notifications) to approve/deny the authentication request. The request also includes useful information (e.g. IP address of the browser) to help the user determine if it’s a legitimate login request.
Before proceeding, please ensure you have the following:
Create a LoginTC domain for your Joomla installation. The LoginTC domain will contain your users’ LoginTC tokens and token unlocking policies.
Configure the plugin to connect with LoginTC Cloud.
Click on the API Configuation tab. Configure how the Joomla plugin connects with LoginTC.
The 64-character organization API key is found on the LoginTC administration panel on the Settings page
The 40-character domain ID is found on the Domain Settings page. To go to the Domain Settings page, click on the Domains tab, then click on your newly-created domain, then click on the Settings button.
Leave the API Host as
Number of seconds to allow for an authentication request to be approved. A good value to use is between
Only users belonging to the selected Joomla groups will be required to authenticate with LoginTC. We recommend that you create a
LoginTC group and apply it to a test user before rolling it out to more users.
Request attributes appear on the LoginTC request view and help the user to determine if the authentication request is a legitimate one or not. Currently, the only supported domain attribute is the browser’s IP Address.
Press the Save button to save the configuration.
The LoginTC plugin requires that the default
Authentication - Joomla authentication plugin be disabled. The LoginTC plugin will handle all username/password authentication attempts and then the LoginTC authentication if required. To do this, follow these instructions:
Users belonging to the selected groups on the LoginTC plugin configuration page will be presented an additional step to authenticate with LoginTC. In order to authenticate, the user must be created on LoginTC Admin and have the LoginTC token provisioned on their smart device.
Users and their tokens can be managed in many ways:
Your usernames in Joomla must match the usernames in LoginTC.
Your users enter their first factor (username & password) normally as they always did.