Hi @luhmann,
Can you take a look at the logs in Wordfence -> Tools -> Live Traffic? (All Traffic should be selected instead of Security Only)
It’s also possible that something within .htaccess is interfering with the login page, so you can also check there for anything strange.
Dave
ALl traffic shows response 200 and type human (green). Nothing seems to be wrong.
Here is my .htaccess
# BEGIN WordPress
<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteRule ^index\.php$ – [L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>
# END WordPress
# Wordfence WAF
<Files “.user.ini”>
<IfModule mod_authz_core.c>
Require all denied
</IfModule>
<IfModule !mod_authz_core.c>
Order deny,allow
Deny from all
</IfModule>
</Files>
# END Wordfence WAF
# BEGIN ShortPixelWebp
# END ShortPixelWebp
Note that this problem seems to be unique to “admin” users… other users have been able to log in!
So I see lots of other people having problems since I posted this. I was able to finally solve my problem by disabling the recaptcha and 2FA login options. At first I just turned off 2FA, but then was getting notices of emails that were never sent, so I turned off recaptcha as well. Now my users can login to the site again. Very disappointed in WordFence not responding to my support request after I replied and for not fixing these obviously widespread problems. Never had reason to doubt my choice of using WordFence before…
@luhmann
Sorry for the delay and the mix up.
We have identified some plugins which can conflict with the captcha such as a few Google Analytics plugins as well as plugins which change the login flow. As you’ve found, we recommend disabling the reCAPTCHA if you are having any issues logging in or are being told to Verifiy via email (and having trouble verifying.)
Please let me know if you have any questions.
