One admin is being blocked

  • Resolved mieche

    (@mieche)


    3 years, 10 months ago

    Hi,

    I, fortunately, haven’t run into this issue with Wordfence before, but now I’m not quite sure how to solve it.

    I manage a site – https://gavriellaschuster.com/, both the site owner and myself have admin access, along with one additional user who rarely logs in. Today the site owner informed me she has been blocked from logging in. Her username has been guessed and many unsuccessful attempts to login as her have occurred, but none have been successful.

    I have logged in and tried to unblock her, but when she has tried to login she is still blocked. Any suggestions on what I can do to get my client back into her site?

    The page I need help with: [log in to see the link]

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Support wfpeter

    (@wfpeter)

    3 years, 10 months ago

    Hi @mieche, thanks for reaching out to us.

    Even if a username has been guessed or used in a brute force attack after being discovered, I would expect the IP that attempted to access your site unsuccessfully to experience the block rather than the actual user. If the user is experiencing a block, it is possible they are being stopped by configuration issues elsewhere.

    From a user-error point of view, you could try ensuring Wordfence > All Options > Brute Force Protection > Immediately lock out invalid usernames is not turned on.

    Detecting your server’s IP as a visitor IP by mistake would result in everybody being blocked when one user violates a rule too. To double-check your IP detection is correct, first, check the following site and take note of your IP – (note that this detection can sometimes not be 100% accurate on cellular phone network connections): https://www.whatsmyip.org.

    Then, head over to your site and go to Wordfence > All Options > General Wordfence Options > How does Wordfence get IPs and reference the area under that section that says Detected IPs and Your IP with this setting. Start from the top and check to see if any of the settings show that both of those show the same IP as the site above does.

    If you’re using Cloudflare, you will most likely need to select “Use the Cloudflare “CF-Connecting-IP” HTTP header to get a visitor IP. Only use if you’re using Cloudflare.”.

    Let me know if either of those approaches help them with their access!

    Do you also have 2FA or reCAPTCHA enabled for administrators?

    Thanks,

    Peter.

    Thread Starter mieche

    (@mieche)

    3 years, 10 months ago

    Thanks Peter,

    I found the whats my IP site in another thread and had my client send me that info, then white listed the range for her IP and she was able to log in. Hopefully that solves it for now.

    There are some definite issues with this site. I inherited it and seem to be playing a constant game of whack a mole as some new random issue pops up randomly.

    The site is hosted on GoDaddy and I did read that their caching can sometimes cause problems with Wordfence as well.

    During my attempts to problem solve this issue I did turn on the reCAPTCHA. The client does not want to was 2FA yet.

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘One admin is being blocked’ is closed to new replies.