I’m still trying to fix this, but not having any success.
Still getting this, usually takes two tries then we can login with using this plugin. Please please someone help, or at last suggest another plugin that renames wp-login.php. Thanks, MTN
Seems there is a plugin conflict. We’re using SSL for login to admin, and have Verve-SSL plugin installed to force use of SSL.
https://wordpress.org/plugins/verve-ssl/
When the verve-ssl plugin is activated, we get the
“You must log in to access the admin area.” message, then if we try again it lets us login.
Battling plugins. Groan. Make it stop. Anyone have any ideas? We need something that’ll rename our login to cut down on attacks, but also something that’ll force use of SSL for our admins.
Thanks, MTN
Hey MTN,
Wouldn’t recommend holding your breath for an answer. Like so many free plugin authors, they seem to get overwhelmed trying to support their item and just fall off the radar. We’ve given up trying to get support here. Good luck, hope you find a solution.
Cheers,
AME Network
Thanks AME, yeah, the WordPress plugin system is downright weird. It’s like idealism vs reality. I’d prefer to pay and get a plugin that worked and had support, but even that is iffy. The last time I paid, the support was still so spotty it was useless and I had to get a refund! At this point, if such a thing existed I’d even pay for a pro blogging platform and give up on WordPress, but that doesn’t seem to be an option. Stuck with spending 10 or more hours a week fooling around with plugins. All I’m doing is trying to get SSL working correctly and defend against the endless hack attacks! Should be a no brainer and built into WordPress, but noooooo. MTN
I found another plugin that seems to be working for login obfuscation:
wSecure Authentication
Just thought I’d let folks know who might land here. Despite the nay sayers, something that essentially renames your login URL for WordPress is super nice, at the least it reduces server load from the thousands of login attempts you’ll eventually start getting if your blog is well known and well linked. We got so many login hack attempts it shut down our server. I installed a login lockdown, but obfuscation was actually way more effective as it blocked all the bad bots before they even got started trying to login.
We’ll see how it goes. Getting this stuff working reminds me of trying to pound a square peg in a round hole. The WordPress developers need to build more of these sorts of things into the core. At the least, when installing WordPress it should ask for a custom login URL and have NO standard admin user name. It is near criminal that those two things are not part of the standard install. Just think of the server resources around the world that are being used to handle the increased traffic from WordPress hack attacks that could so easily be reduced in volume. The electricity alone could probably power a medium sized village.
MTN
