Jetpack locking multiple users out of site

  • Resolved oakhurstpcusa

    (@oakhurstpcusa)


    7 years, 2 months ago

    Second time issue has happened in two days. When I try to log in I get this message: Your IP address 149.126.76.14 has been flagged for potential security violations. You can unlock your login by sending yourself a special link via email. Link in email I received does not work – I get this error message: {“error”:”Bad Request”,”message”:”Invalid input.”}.

    I know that I can whitelist my IP address, but there are dozens of users who need to log in to view certain password-protected sections of the site. There’s no way I can whitelist every single one of their IP addresses. Is there another fix?

    I posted this question to a similar thread the first time it happened but received no response. The problem seemed to resolve itself, but now it’s back. Thanks for your help.

    The page I need help with: [log in to see the link]

Viewing 3 replies - 1 through 3 (of 3 total)
  • Plugin Contributor James Huff

    (@macmanx)

    7 years, 2 months ago

    Sorry about that!

    To fix that, go to https://wordpress.com/settings/security under the connected WordPress.com account, and then select the site in question.

    Click the toggle next to “Prevent and block malicious login attempts,” followed by the “Add to whitelist” button, and save.

    Thread Starter oakhurstpcusa

    (@oakhurstpcusa)

    7 years, 1 month ago

    Hi James,

    This topic is still not resolved. We have multiple users who need to log on to the site (they have view permission only for certain pages that contain personal info like addresses). There is no way for me to whitelist all of them. What are some other options? Thanks!

    Jami Wise

    Plugin Support KokkieH

    (@kokkieh)

    7 years, 1 month ago

    Hi Jami,

    If these users need to be able to log into the dashboard in order to view those pages and they’re being blocked when they try, then whitelisting their IPs, or otherwise disabling Protect are the only options.

    Jetpack Protect does not have an option to exempt certain accounts from having their logins protected.

    But Jetpack Protect should only trigger if we’ve detected multiple failed logins from a particular IP in a certain time across our network. So it’s unlikely that large numbers of your site’s users are finding themselves blocked all the time, and you should only need to whitelist an IP if a specific user contacts you saying that they cannot log in.

    https://jetpack.com/support/security-features/

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘Jetpack locking multiple users out of site’ is closed to new replies.