Cookies are blocked on login

Did you try using it with private or another browser?

Hi jeriko90,
unfortunately we observe the same behavior private or not.
The problem is that we don’t know what say to the customer who complain about this annoying event.

Hello @phaser32 and thanks for reaching out to us!

Are you using the default wp-login/wp-admin pages for login or is it a custom URL on all of your sites?

Can you send a diagnostic report from one of these sites to wftest @ wordfence . com? You can find the link to do so at the top of the Wordfence Tools > Diagnostics page. Then click on “Send Report by Email”. Please add your forum username where indicated and respond here after you have sent it.

Thanks again!

Good evening wfadam,
first of all thank You so much for Your assitance and patience.
I confirm to have sent You the report.
As for the login url, obviously for security reasons we log in with custom urls. Even disabling the plugins used to customize the login url the situation is the same.
However, based on your answers, we ran a series of tests and noticed this behavior.
At the first access the problem always recurs.
From that moment on it recurs sometimes.
However, it always recurs when you clear your browser cache or log in from a new device.
Not all users clear the cache, but in any case it’s an anomalous behavior that, as mentioned above, causes us complaints from customers that we struggle to manage.
Thank you for all you can do.
Warm regards
Ale

Thanks for sending the diagnostic and providing the information on your tests.

We always recommend not changing the default login pages from wp-admin/wp-login. Most people think that hiding these login pages will make their sites more secure but Wordfence has a lot of features that are predicated on your site using the default login pages.

For example our 2FA feature is designed to work on the default login pages, if you change the URL, you might see some issues with how the code works or it might even not work altogether.

https://www.wordfence.com/blog/2017/10/should-you-hide-wordpress-login-page/ is an older article that we published in 2017 but it still points out the reasons why you should not hide your login URL.

Just to test, I would recommend disabling WPS Hide Login and then see if this issue occurs on the default wp-login page.

Let me know what you find!

Thanks again!

Hi wfadam,
as for the use of an access with 2FA it’s not feasible because customers want quick solutions and to solve a problem we cannot give them other things to do.
As explained in the beginning we have carried out all the necessary tests and the situation is resolved only and exclusively by deactivating Wordfence. Disabling WPS Hide Login does not change the situation.
So by method of exclusion, unfortunately, the problem is related to Wordfence.
Warm regards
Ale

I do know that our 2FA does not work on custom logon pages, which is exactly what WPS Hide Login does, is create a custom login page.

I am confident if you disable WPS Hide Login and use the wp-login page, this will correct the 2fa issue you might be seeing.

Thanks again!

Hi wfadam,
this is not a solution and as I said deactivating WPS HIDE LOGIN the situation is the same…..BUT we noticed that after latest update the issue is disappeared!
By the way I have to say great support (rare thing)!
Thank You so much for time spent and attention.
Warm regards
Ale