Can’t login using external app

  • Resolved trwhite6878

    (@trwhite6878)


    4 years, 2 months ago

    I can’t seem to login using JetPack or a call to xmlrpc. I disable WordFence and am able to login using my external app using Jetpack but not xmlrpc. I keep WordFence active, I can’t login either way. The error I get trying to login with Jetpack and my external app is Invalid Response [400 Bad request].

    For the xmlrpc I get an error that a firewall is blocking it and/or rate-limiting access. I use CloudFlare, and have gone through every setting I could think of, every firewall setting there, whitelisting ips on both CloudFlare and WordFence and I cannot login.I am using 2FA and it doesn’t matter if it is active or inactive, or if I have skipped selected to allow access to xmlrpc, nothing works.

    I have this on two sites: https://tifftalkstech.com and https://distinguishedfatloss.com

    The page I need help with: [log in to see the link]

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support WFAdam

    (@wfadam)

    Hello @trwhite6878 and thanks for reaching out to us!

    If you are using Jetpack, we need make sure Disable XML-RPC authentication is not checked. This option rejects all XML-RPC requests that require authentication, whether they have a valid username and password or not. It applies to all logins, not only those for users with 2FA enabled.

    This option is not compatible with the WordPress phone app, the Jetpack plugin, or most other services that use XML-RPC.

    Navigate to Login Security > Settings > Disable XML-RPC authentication and verify that this option is not checked.

    Let me know if this helps!

    Thanks!

    Thread Starter trwhite6878

    (@trwhite6878)

    Nope. None of that is checked.

    Plugin Support WFAdam

    (@wfadam)

    Hello again @trwhite6878

    You say the firewall is blocking it, does that mean you can see the block via Tools > Live Traffic? If so, you can whitelist that parameter right from there by clicking on the blocked action and “Whitelist”.

    You could also try Learning Mode. From the Wordfence Dashboard click on Manage WAF. Then you will see Basic Firewall Options > Web Application Firewall Status. Change the option to Learning Mode. Now perform the actions that were causing issues. This will help Wordfence learn that these actions are normal and it will allow them in the future. After you have finished performing the actions, switch the WAF from Learning Mode back to Enabled and Protecting. Now test to see if these actions work correctly.

    https://www.wordfence.com/help/firewall/learning-mode/ is an amazing resource for learning more about the WAF and learning mode.

    Let me know if this helps!

    Thanks!

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Can’t login using external app’ is closed to new replies.

Tags