Security is one of the most important things to have a solid eLearning Platform. Adding an extra layer in authentication makes your site 100% more secure.
On the other hand, students may ask other people or even pay other people to do their assignments or even their tests for them. This is just another way to see a reason to add an extra layer of security.
This is why LMS Doctor came with the solution to build 2-Factor Authentication for Moodle. So every time a user signs in, we are 100% sure, is the owner of the account. Here is how it works.
How does it work?
Users sign in with the username and password as usual. If those are correct, then a verification code is sent to their email address or mobile phone through SMS (depends on the configuration) and they must input the code to complete the sign-in process. If a user hasn’t input their mobile number, a field to update their mobile phone will be prompted.
Settings for administrators
Attempts: Admins can decide the number of attempts a code can be entered.
Code time span: Admins can set the amount of time (in seconds) before the code expires.
Lock timeout: Admins can set the amount of time a student must wait before attempting to sign in again in case they’ve reached the limit of attempts.
