What to set on NginX servers?

[ad_1]

Maybe we need to write something in the .htnginx file?

Hello @csoszitibor,

The plugin should work under any environment as the login restriction doesn’t happen on NGINX level but through the database of the application. We have developed the plugin so it can be used under any hosting setup.

When an IP does more than the allowed login attempts it is included and blocked in a table sg_security_unsuccessful_login. The plugin checks this table and if an IP is present it is presented with:

“The access to that page has been restricted by the administrator of this website” and a 403 response code.

If you are experiencing any difficulties it might be some configuration on your hosting server or another plugin getting in conflict with this functionality of Security Optimizer.

Best regards,
Georgi Ganchev

Hello @georgiganchev,

thanks for your answer. Now it is working fine, our hosting company modified something in server settings.

We have another questions:

1.) Is it possible to disable this option?: “Do not challenge me for the next 30 days.” So we want to use Authenticator code on every login attempt.

2.) We have added a custom filter to enable 2FA for subscribers too. The authentication is fine. We have set with LoginWP plugint that login URL is our frontend. But when a subscriber logs in with backup code, they arrive into admin area. (/wp-admin). How to disable this /wp-admin ?

thanks

Tibor

  • This reply was modified 3 hours, 25 minutes ago by csoszitibor.

Hello @csoszitibor,

In case, you have already selected the mentioned option for a particular user:

“Do not challenge me for the next 30 days.”

the above can be reset via:

WP Dashboard > Security Optimizer > Login Security > Two-factor Authentication for Admin & Editors Users > “click here” to reset their 2-factor authentication

If you do not mark the checkbox next time, authentication code will be required each time you login.

As for the custom filter, it is not recommended to use different plugins with similar functionalities. I would advise you to review your other security plugin’s settings, so both plugins to work as expected. Have in mind that our Security Optimizer has “Custom Login URL” option that could be used if it is suitable to your setup:

https://siteground.com/tutorials/wordpress/security-optimizer/login-security/#Custom_Login_URL

Regards,

Vladimir

 

This site will teach you how to build a WordPress website for beginners. We will cover everything from installing WordPress to adding pages, posts, and images to your site. You will learn how to customize your site with themes and plugins, as well as how to market your site online.

Buy WordPress Transfer