Support » Plugin: Wordfence Security - Firewall & Malware Scan » 2FA for admin on multisite

  • Resolved plerix

    (@plerix)


    Hi all,

    I have 2 WordPress multisites, both with WordFence.
    On dev site I use the free version of Wordfence and on prod site I use the premium one.
    On dev site, all admim can choose to use the 2FA, on prod they are not allowed to do this.
    In both sites, in the Login and security settings, 2FA is set to be used for SuperAdmin and Admin.
    So the question : why on my prod site (Wordfence premium) only the SuperAdmin can use 2FA and Admin not ?

    Thanks for your ideas 😉
    Philippe

    The page I need help with: [log in to see the link]

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Support WFGerroald

    (@wfgerald)

    Hey @plerix,

    What happens when they try to enable Two-Factor? Can you please share a screenshot?

    Do you see any errors in the browser console while on the Login Security Two-Factor page?

    https://www.wordfence.com/help/advanced/troubleshooting/#how-to-inspect-the-browser-console

    Thanks,

    Gerroald

    plerix

    (@plerix)

    Hi @wfgerald,

    There is no error, that is the reason why I open this “case”.

    In the users list, the admin users do not have a “2FA” link” (only “Modify | Remove | Display”) and in the “2FA status” column it is indicate “Not Allowed”.
    However, in the 2FA configuration, the “Super Admin” AND “Admin” checkboxes are well checked.
    The only difference I see is “Wordfence” (premium or not).
    Moreover, strangely enough, it is in the premium version that the problem arises.

    Thanks,
    Philippe

    Plugin Support WFGerroald

    (@wfgerald)

    Hey @plerix,

    There shouldn’t be any difference between the free and Premium version. But can you try quickly downgrading to the free version to see if it helps?

    If that doesn’t help, can you try temporarily switching to a default theme if you’re not already using one and disabling all other plugins then reactivating them one by one to see if the issue persists?

    Lastly, you might try resetting Wordfence.

    https://www.wordfence.com/help/advanced/remove-or-reset/

    Thanks,

    Gerroald

    plerix

    (@plerix)

    Hi, @wfgerald

    Thanks for your help.
    I think this is a normal situation, similar to the option “Require 2FA for all administrators” for which a note indicates that on a multisite, this option applies only to super admins.
    Indeed, if I create an admin on the main site, everything works fine and the 2FA option is there.
    So, the admins of a sub-site of the multisite do not have access to 2FA in the current functions of the plugin.
    It’s a real disappointment because it forces me to add another 2FA plugin since each sub-site will be a different domain belonging to a non-profit patient association.
    I mark the topic as resolved.
    Thank you again.

Viewing 4 replies - 1 through 4 (of 4 total)
  • You must be logged in to reply to this topic.