Restrict User Access stops Wordfence 2FA working

  • Resolved Steve Parry

    (@vidarparry)


    2 years, 6 months ago

    On enabling 2FA in Wordfence, 2FA (“Login Security”) option doesn’t appear in any level below Admin when Restrict User Access plugin in activated. I don’t want to sacrifice Wordfence or RUA – is there a way around this? Latest versions of everything.
    Many thanks!

Viewing 9 replies - 1 through 9 (of 9 total)
  • Plugin Author Joachim Jensen

    (@intoxstudio)

    I am unable to reproduce this issue. When I enable WordFence Login plugin and go to the Profile admin screen, I can see “Wordfence Login Security” settings above the RUA settings.

    Can you provide some more details? Where is the option missing, and have you ruled out conflicts with other plugins than RUA?

    Thread Starter Steve Parry

    (@vidarparry)

    Thanks for your reply Joachim.

    I’m using RUA v2.2.3 and I’ve just seen an update to v2.3, so I’ve updated to v2.3 and the problem is still there.

    In the Wordfence settings go to Login Security. You should see Two Factor Authentication Tab and Settings Tab. Select settings tab and set one of the roles (that you would login in as to test) to “Optional” and click save.

    With RUA Activated, login as the the user with the role you have set to optional.

    Go to Edit Profile for that user (Or Dashboard). You should see a “Login Security” Tab in the side menu. With RUA activated the Login Security tab doesn’t appear.

    It may of course be something more subtle with the actual user level settings in RUA, but lets see if you can reproduce it like this first:-).

    Cheers…Steve

    Thread Starter Steve Parry

    (@vidarparry)

    Did this help Joachim?

    Just to be clear, I have disabled all plugins, Wordfence 2FA (“Login Security”) option appears.
    I enable RUA and Wordfence 2FA (“Login Security”) option disappears.

    Thank you!

    Cheers
    …Steve

    Plugin Author Joachim Jensen

    (@intoxstudio)

    Thank you for the detailed explanation. I will see if I can reproduce this on my end and get back to you

    Thread Starter Steve Parry

    (@vidarparry)

    Hi Joachim,
    Do you need any further information?
    Cheers
    …Steve

    Plugin Author Joachim Jensen

    (@intoxstudio)

    Unfortunately I have not had the time to look further into this yet

    Thread Starter Steve Parry

    (@vidarparry)

    Thanks for the update. Any estimate on when you might be able to investigate for me?
    Many thanks!
    Cheers
    …Steve

    Plugin Author Joachim Jensen

    (@intoxstudio)

    I was finally able to test this, thank you for the detailed STR. However, I have not been able to reproduce the problem; the “Login Security” menu is visible, and I am able to access the screen.

    I then went ahead and denied the capability “wf2fa_activate_2fa_self” for an access level that the user is member of, and that removed the menu.
    Can you double check that this capability hasn’t been denied for the user you are testing with? i.e. if you have an access level with all capabilities denied

    Thread Starter Steve Parry

    (@vidarparry)

    Hi Joachim.

    Apologies for the delay – I’ve been away.

    Thank you – didn’t even think to look there!

    That fixed it – thank you.

    There may be problems with a user with multiple memberships, eg a Subscriber as well as a separate member of another group. Initial testing indicates bother access levels need to be set to enable the menu and 2FA. But I can work around that.

    Thanks again!

    Cheers
    …Steve

Viewing 9 replies - 1 through 9 (of 9 total)
  • The topic ‘Restrict User Access stops Wordfence 2FA working’ is closed to new replies.

Tags