Solution to the problem of using the WordPress plug-in Wordfence to protect the website and causing the administrator to be unable to log in to the backend

Because the website uses the WordPress plug-in Wordfence, when I logged in to the WordPress backend today, it prompted "Your access to this website has been temporarily restricted by the website owner." This was because the password was entered incorrectly due to caps lock when logging into the backend, and then The WordPress plug-in Wordfence automatically prohibited me from logging in to the backend to perform operations.

The reason why this is set up is because some websites have been successfully cracked by brute force, including now, every day there are people trying to log in to the backend of the website using different administrator usernames. Therefore, I added the WordFence plug-in to all WordPress backends to protect this important asset of the website.

So, my website is restricted from logging in, what should I do? Let’s take a look at the solution to using Wordfence to protect the WordPress website and causing the administrator to be unable to log in to the backend:

Solution to the problem that the administrator cannot log in to the backend

Method 1: Wait.

When setting the lock, Wordfence will let you choose the lock time. If the "user locked time" you choose is shorter, such as 5 minutes, then you can refresh the page and log in again after 5 minutes. . If the lock time you set is very long, say 1 year, then please use method 2.

Method 2: Change IP to log in to the backend.

Wordfence locks your current IP address. You can switch IP addresses, such as changing computers or mobile phones, or using tools to switch to foreign IPs, refresh the page and log in to the backend again, then on the Wordfence - Firewall - Blocking page, find and select your IP address, and then select "Unblock ". Then you can switch to the original IP address and log in to the background again. As shown below:

You can add or modify account locking rules in the Settings option of Wordfence – All Options – Strong Protection, including the number of failed login attempts before locking the account, the number of attempts to forget the password before locking the account, and the lockout duration. At the same time, you can check "Lock invalid user names immediately" to protect your website. For example, in the picture above, someone tries to use the user name "test@test.com" to log in to the backend of the WordPress website, then WordFence will immediately lock this person's The IP address is locked and he is prohibited from accessing the website again.

Wordfence is quite powerful for protecting our WordPress website. recommend.

In addition, it is also strongly recommended to modify the default backend login address of the WordPress website and the default user link address of the administrator to better protect your website.

Recommended site searches: space server, php space application, renting server, US website space, Hong Kong server purchase, domain name information query, how much does it cost to rent a server for one year, special space, free foreign space, proxy ip,