2FA

I just want our Administrators to login with some sort of key fob, or as they were once known as dongles. That gives my age away !!!

Which ones are you looking for support? RSA SecurID or something else like HID? I’m asking because there may be a 2FA that you can use if you already have the infrastructure.

I am at the first stage of trying to get 2FA so have nothing installed.

Ah. I was hoping you’d had an existing 2FA setup already that you’d like to take advantage off. For example, at work we use RSA SecurID tokens that display a time based number using a secret seed and has a RADIUS interface.

I don’t want to use Smart phones to generate the key.

That’s kind of a problem. The infrastructure to manage and maintain your own key fob (dongle) is prohibitively expensive. As someone who uses a 2FA dongle everyday I appreciate what you are trying to do. 😉

The best I can suggest is that you try this plugin search.

https://ww.wp.xz.cn/plugins/search.php?q=2fa
https://ww.wp.xz.cn/plugins/search.php?q=OTP

In the absence of having someway to add the second factor (a dongle or key fob) you may need to use a phone. For my personal site I use Google Authenticator and an app on my smartphone. It’s time based and does not require any network connectivity on my phone and it works well. My smartphone is the dongle for me.

But you’ve made it clear you do not want to go that route. The first search uses plugins that support SMS as a means of sending the user a code required to complete the loigin process.

The second search is for using one time passwords. It’s not a dongle but can partly fil that need. Personally I think the SMS option is better but your mileage may vary. 😉