Normally this happens if the user forgets to activate AND save the settings on the user profile page, did you check that ?
Thread Starter
Anzug
(@anzug)
Thanks for your quick reply. I just double-checked everything, deactivated, saved, activated and saved settings again and can still get in without the GA code.
And you are logging in with the userprofile you are modifying ?
Could you post the URL for your site ? Or email it to me at henrik at schack dot dk
Thread Starter
Anzug
(@anzug)
I was. The role of that user is set to “subscriber” as I am testing on it first to make sure everything works. However, this time I also deactivated and activated GA for him using my admin account, but that didn’t solve the issue. Thanks for your patience, I’ve sent you an email.
Yes thank you for the email.
Reason it doesn’t work is that iSeciruty plugin overrules my plugin.
I can’t do anything about that
Best regards
Henrik
Thread Starter
Anzug
(@anzug)
That’s a shame. Could you recommend another plugin similar to ithemes security that is compatible with your plugin? I’d rather keep yours.
Hm no not really, but you could try to disable ALL login related features in iSecurity
Thread Starter
Anzug
(@anzug)
Thank you for your help. I’ll give it a try and let you know if it works.
Hi @anzug I am currently using All In One WP Security & Firewall with this plugin and it works really well.
Kind regards
Hi there,
I have the same issue. Can login without entering GA code and even with a random code, e.g. 123456. The difference is, I do not have any of the above mentioned plugins installed. In fact, I try to keep installed plugins at a minimum. Although, I have WP-Client installed. May that interfere with this plugin?
Thanks!
Cheers
@adcgn can you start a new support thread.
Thank you
There was a recent review that also claimed he could login with an invalid TOTP code, but he never followed up with details.
@adcgn, did you go to your profile (http://your-site.com/wp-admin/profile.php) to setup the plugin for your specific account? It doesn’t start working until you do that.
If you have, then there could be a serious bug that we need to identify and fix, so please help us out with some info:
1) What are the values for the Active, Relaxed Mode, and Enable App Password settings on your profile page?
2) Did you try disabling all other plugins, to see if it worked then? If not, could you post a list of the plugins and theme you’re using, so that I can test GA with them?
@ian Dunn, I can’t reproduce the issue that @adcgn is reporting. Have you also tried to reproduce the issue yourself?
Have you heard from @henrik Schack? It would be great if he could update the plugin to the latest WordPress version. Have you also thought of asking Henrik Schack if you could also manage this plugin with him?
I was having the same issues as @adcgn, then I double checked and figured out the issue: although I had enabled the plugin in my profile, and scanned the QR code on my phone, I hadn’t saved my profile in WordPress.
It’s working fine for me now on WordPress 4.2.2 and Wordfence 6.0.5. Thanks!
