Plugin Forced to Generate Password Always

  • Resolved anishniranam

    (@anishniranam)


    3 years, 3 months ago

    Whenever Login to Workdpress Admin area, Getting message to regenerate Password, Save the same continue with 2A Auth Code, Again getting message to change password. How i can solve this issue. It’s Happening to one particular site, My other sites works fine. plugin settings almost same for all sites.

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Support Nebu John – WPMU DEV Support

    (@wpmudevsupport14)

    Hi @anishniranam,

    I am sorry to know that you are experiencing this issue.

    Wouldn’t you mind please clearing all the cache and see if that resolves the issue? Can you please make sure no other plugins or the theme is conflicting and causing the mentioned issue?

    I hope the following flowchart helps during the test: https://wpmudev.com/wp-content/uploads/2015/09/Support-Process-Support-Process.gif

    Make sure to take a complete backup of the site as it involves deactivating plugins and themes.

    Please let us know the results.

    Kind Regards,
    Nebu John

    Thread Starter anishniranam

    (@anishniranam)

    Clearing cache etc like solutions are cleached , it’s just basic. did all these and deactivated other plugin etc. if you have a solution, please tell.

    Plugin Support Williams – WPMU DEV Support

    (@wpmudev-support8)

    Hi @anishniranam

    Thanks for trying that and letting us know!

    This isn’t really a “known issue” so we need to go “step by step” with it. I’m particularly wondering about this aspect: “Getting message to regenerate Password”.

    The Defender plugin doesn’t force password reset like that except two cases:

    1. if you specifically enable “Defender -> Tools -> Password Reset” option

    But that’s a “one time thing”. I mean that it’s not an “enabled/disabled” kind of feature but rather an option for you to force users to reset their passwords whenever you think it’s necessary. Otherwise it doesn’t work “on its own”.

    2. if the “Defender -> Tools “Pwned Passwords” option is enabled.

    This option, if enabled, checks hash of password upon each registration and login (!) against “haveibeenpwnd” database and actually does force password reset.

    I think this is most likely the issue and if you are able to disable this option then you could confirm it: if no forced password reset happens once it’s disabled, it means this is the case.

    And if so, it would very likely mean that the password that was used as new one for reset wasn’t quite secure as well, I’m afraid.

    Kind regards,
    Adam

    Thread Starter anishniranam

    (@anishniranam)

    Adam , Thanks for the support.

    I have Tested 

“Defender -> Tools -> Password Reset” option with enabled and Disabled 

 Result is same. 

“Defender -> Tools “Pwned Passwords” option is enabled. I have Disabled this option, Now issue is solved. Thanks for guide me to troubleshoot with proper guidelines.
Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘Plugin Forced to Generate Password Always’ is closed to new replies.