1. I posted about this exact issue last month after having a similar experience. It’s definitely not the easiest thing to figure out on the first try.


    1. Actually, I don’t understand what the “Create Application Password” portion had to do with me not being able to login. I visited that page on my WP.com settings screen and added an app called WordPress For iOS and tried to use the 16 digit password it gave me to login to WP.com in the WordPress mobile app and that didn’t work. I’m pretty sure I’m totally misunderstanding what the Create Application Password is for.


      1. Using an Application password is the correct way to handle this problem.

        When you’re using two factor authentication, you login with three items instead of two. You have your username, your password, and the code from the 2-factor system.

        But not all systems are geared to accept three things. The App is one of those, it only takes a username and a password. And without having the ability to take a third input, WordPress.com correctly rejects your login attempt.

        This is what the Application Password is for. It generates a password you can use with your username *instead* of your normal password. This password will log you in and bypass the 2-factor. This is secure by the fact that it is revokable. You are supposed to use a different password for each App that you need to give access to your account, and if you later revoke that password, then that App is cut off and can’t access your account anymore.

        What you should do is to generate an Application password, and then use that with your username in the App to login to WordPress.com.

        Logging out and then back in on your PC won’t have any effect at all, realistically. What’s going on is that you have enabled 2-factor and your App on the phone doesn’t know how to do anything other than basic user/pass authentication.


  2. Thank you for the update! I’m using a different 2-factor plugin so perhaps i’ll move to the Jetpack version and see if I can get up and running.


  3. what two-factor auth plugins are you guys using? im looking for a personal blog(not wp.com) that does SMS. i dont like having to use the google auth app.


Comments are closed.