“You are locked out”- looks like a bug

  • This really looks like a bug bug. When iThemes Security is activated on our multisite, it would lock every out, making the site completely inaccessible.

    I have entered my IP address and other admin’s IP address into the white list.

    No one could even open the web page, not to mention the WP Admin. Everyone gets this You Are Looked Out page.

    As soon I deactivate the Security Pro, this issue goes away. In another word, if we keep your plugin active, our Multisite Network is not usable.

    We are a multisite network and this happens on the Multisite only.

    Please address it. It is a bug not a user issue.

Viewing 2 replies - 1 through 2 (of 2 total)

  • Hi,

    You can try disabling the following features to see if it helps.

    Hackrepair Blacklist Feature
    (Security> Settings> Banned Users)

    Filter Long URL Strings
    (Security> Settings> System Tweaks)

    Filter Suspicious Query Strings in the URL
    (Security> Settings> System Tweaks)

    Filter Non-English Characters
    (Security> Settings> System Tweaks)

    You may also try enabling XML-RPC and allowing Full Access to the REST API.
    (Security> Settings> WordPress Tweaks> XML-RPC)

    If that does not help to resolve the issue you could enable each setting within Security Pro that you would like active, and then deactivate them one at a time to determine the culprit.

    Thread Starter Jing

    (@gujingc)

    hi, thank you for the reply.

    This is what I found as a temporary solution following your hint.

    Disable all functions except the Passwordless login and Multisite Tweak. It is very important to enable Multisite Tweak. If it is not turned on, it leads to the same error.

    This suggests the issue is a bug and iThemes should look into how the multisite is handled.

    Jing

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘“You are locked out”- looks like a bug’ is closed to new replies.