• Resolved robertochionna

    (@robertochionna)


    Hi, I don’t know if my issue could be related to Wordfence, but, since some time ago, I’m unable to login as administator into my site.

    I receive a 400 error:

    https://www.osg2001.it/wp/wp-admin/admin-ajax.php 400 (Bad Request)

    I’m the only admin in this site and I didn’t made any changes since all works fine (I always use the 2FA with Wordfence).

    I tried to disable all pluging, all themes, but nothing changes, of course I cannot use Wordfence, due I’m unable to get into admin section of my site.

    Despite this the site is reachable online, only the admin section is unreacheable.

    Do you have any idea about this ? I end ideas…

    Thank you very much for any suggestion

    The page I need help with: [log in to see the link]

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support wfmargaret

    (@wfmargaret)

    Hi @robertochionna,

    To confirm whether the issue is with Wordfence, please try deactivating Wordfence. You can deactivate Wordfence manually via the file system. You can do that as follows:

    • Connect to your server using the method you normally use to upload files. Most people either use FTPS or SFTP to do this.
    • Use your hosting control panel file manager to rename the Wordfence folder located in “wp-content/plugins/wordfence”.

    The above procedure will immediately deactivate Wordfence, so if Wordfence is causing the bad request, you should now be able to log in.

    If you’re able to log in after deactivating Wordfence, please try reactivating Wordfence in the dashboard.  If you’re still able to use the dashboard once Wordfence is activated, please review any blocked traffic from your IP in Wordfence > Tools > Live Traffic.  You can obtain your IP at https://www.whatismyipaddress.com/.  If you see any blocked actions that you know are safe, you can click the “Add param to firewall allowlist” button to allow those actions in the future.

    If you’re not seeing any blocked attempts, you may benefit from switching the firewall back to Learning Mode temporarily in Wordfence > Firewall > Manage WAF > Web Application Firewall Status > Learning Mode.  Please ensure you configure a date to enable the firewall again by checking Automatically enable on, and then click Save Changes to save.

    Thanks,
    Margaret

    Thread Starter robertochionna

    (@robertochionna)

    hi, thank you for your reply.

    in fact, renaming Wordfence plugin directory that error will disappear, but I still cannot login: when I put my (right) credentials and press Login the login screen would be simply reloaded without any error in console (F12).

    in this scenario no message will be prompted, compared when Wordfence is active and after a login attempt I receive a wrong credential message.

    maybe could be some other php files that Wordfence change outside plugin directory ?

    thank you very much for your support.

    roberto

    Plugin Support wfmargaret

    (@wfmargaret)

    Hi @robertochionna,

    Since the error goes away when disabling Wordfence, this may be unrelated to Wordfence. To test, you can reset Wordfence using the following steps.? It’s important that you do step 1 before the other steps.

    1. Remove extended protection manually
    2. Remove the “wordfence” plugin folder located in wp-content/plugins
    3. Remove the wflogs folder located in wp-content
    4. Remove wordfence-waf.php located in the root of your WordPress installation
    5. Remove all Wordfence-related database tables from the database, using for example phpMyAdmin (You can find a full list of Wordfence-related tables here)
    6. After testing the login, reinstall Wordfence

    Once Wordfence has been removed, if you’re still having login issues, the issue is likely unrelated to Wordfence.

    Thanks,
    Margaret

Viewing 3 replies - 1 through 3 (of 3 total)
  • The topic ‘Unable to login (admin-ajax.php) error 400’ is closed to new replies.