David Adams

p.s. This ticket has NOT been resolved!!

Do you not think that this information should have been included in your original request, or were you expecting me to know this off-hand?

I am not prepared to hack my WordPress installation just to do your troubleshooting for you. This is a live site and I am not clever enough to be able to fix it if your hack doesn’t work.

Are you able to re-create this issue on your own test sites? If so, please just let me know when you have a fix available. Until then, I will keep Rank Math disabled whilst I look for an alternative.

The clock is ticking.

Apologies for the delay is replying, I’ve had some personal matters to attend to.

I added the code above to a ‘Snippets’ snippet and received the following error on activation:

The snippet has been deactivated due to an error on line 2:
Cannot redeclare function wp_cache_supports.

Please advise.

Email with screenshots and activity logs provided.

David.

Judith,

You are welcome.

David.

Judith,

Submitted.

David.

I have submitted the ticket (#31282), as requested, and close this one.

David.

Before I buy a premium license can I check function in my development and test environment?

David.

OK, so you’re saying that:

1. The “Locked Out” page, showing that all three Admins are locked out, should be ignored because 2FA has not been strictly speaking ‘enabled’ yet (see 2.).
2. 2FA for Admins cannot be ‘enabled’ (even if it is ‘required’) until at least one of them has setup 2FA.
3. The grace period for Admins cannot be setup on the Login Security Settings page, instead must be setup individually via the user profile page.

Have I understood?

So if I:

1. Setup 2FA for myself (as one of the three admins)
2. Setup a grace period for the other two admins (via the user profile page)

…then I should expect:

A. I will be asked for my 2FA code when I subsequently login
B. The other two admins will receive a notice when they go to login that they should setup 2FA AND if they don’t do this, they will eventually be locked out i.e. after the grace period.

Is this correct?

New diagnostic report sent.

As requested, I:

– Selected the Delete Login Security tables and data on deactivation
– Deactivated, then re-activated the plugin
– Re-setup 2FA to be Required for the Administrator role, with a 1-day Grace Period.

Result:

– No change in login behaviour (not locked out, no request for 2FA)
– The dates on the Locked Out screen for all three Administrator accounts had changed to the current date

New Screenshots:

View post on imgur.com

View post on imgur.com

Sent.

wfphil,

Thank you for your reply.

No, both the Allow listed IP addresses that bypass all rules in Advanced Firewall Options and Allow listed IP addresses that bypass 2FA in Login Security Settings fields are blank.

David.

@sixaxis,

Thank you. I am looking for a plugin that better integrates with native features.

Please feel free to close the ticket.

David.

Please answer the question. If you would like me to rephrase it or provide further information, please let me know.

David.