WP Admin Login Loop with WF 2FA and Cloudflare Turnstile

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Support wfmargaret

    (@wfmargaret)

    Hi @terragirl,

    Thanks for reaching out. While Wordfence doesn’t currently have Cloudflare Turnstile’s CAPTCHA integrated, Cloudflare Turnstile itself isn’t incompatible with Wordfence and both can be used. From my understanding, a 401 response is a normal part of the Cloudflare Turnstile challenge process: https://developers.cloudflare.com/turnstile/troubleshooting/troubleshooting-faqs/#i-am-seeing-a-401-error-in-your-console-during-a-turnstile-security-check-is-this-a-problem

    If you temporarily deactivate Wordfence or your Cloudflare Turnstile plugin, are you able to log in successfully? If the issue still occurs with Wordfence deactivated, it’s unrelated to Wordfence.

    Let me know how it goes!

    Thanks,
    Margaret

    Thread Starter Edith Allison

    (@terragirl)

    Hi Margaret,

    Thank you for replying! I’ve disabled WordFence, logged in, re-enabled WordFence and disabled 2FA. Login now works, no other changes were made.

    Best wishes, Edith

    Plugin Support wfmargaret

    (@wfmargaret)

    Hi @terragirl,

    Thanks for testing and following up with me. If you re-enable 2FA, does the login loop issue return? If so, are you using any custom login forms? The Wordfence login security features are primarily made for the default WordPress login flow with added compatibility with WooCommerce.? We have seen our 2FA fail to work on custom login forms generated by other themes and plugins.

    I tested some Cloudflare Turnstile plugins and could use Wordfence’s 2FA without any problems. If this is the only plugin you have modifying the login form, can you test if 2FA works normally when it’s disabled? You may have better success with a different Cloudflare Turnstile plugin.

    Thanks,
    Margaret

Viewing 3 replies - 1 through 3 (of 3 total)
  • You must be logged in to reply to this topic.