Worked around it like this
I changed 2 step auth settings per user and set QR scan as primary. However, it insists on sending me an email with code? Why and how to fix.
Hi @hebhansen, adding the define('ITSEC_DISABLE_TWO_FACTOR', true); should disable the 2FA step.
As for the spinning reCAPTCHA, could you please try to conduct a plugin/theme conflict check? Could you please try deactivating all plugins and using a default WP theme to see if it resolves the problem? If it does, reactivate the plugins one at a time to isolate the culprit.
I am using a default wp theme, TT3
Can you confirm that the per user settings by admin does belong to this plugin:
- Activate QR (Recommended) Standard Recommended
- Activate Mail
- Etc
How will a new user joining a 2 Step role see this? Selction or does admin need to set this for every user?
Also: I have my site in authenticator from another 2 step plugin. Will I need to re register from QR or should my existing site auth work? If I am ever presented to the scanner that is.
Hi @hebhansen, the 2FA options for iThemes Security are listed as the ff:
– Mobile App
– Email
– Backup Authentication Codes
Please check here for more information.
How will a new user joining a 2 Step role see this? Selection or does admin need to set this for every user?
– For new users, they will be shown the 2FA Onboarding the first time they log in, and from there, they can set up the methods the admin allowed on the Security > Settings > Two-Factor settings. Suppose they skipped the 2FA onboarding, or if they want to add/update their 2FA settings, they can do this via their WordPress Profile page.
Also: I have my site in authenticator from another 2 step plugin. Will I need to re register from QR or should my existing site auth work? If I am ever presented to the scanner that is.
– I believe you’ll need to set up iTSec’s 2FA separately. Please note that we recommend avoiding running multiple plugins with similar functionality, as they are known to cause conflicts. You could start checking for a plugin conflict by temporarily disabling your other 2FA plugin and see if iTSec’s 2FA proceeds.
Trying to login. 2 Step kicks in. Setup for code to mobile app > notifies that code is sent to mail ??? > Copy paste code to browser > It says “Match Requested Format and I cannot login”. I can resend and then get blocked again.
For now I assume this might only affect already registered user, when activation 2 step auth. I assume new users will get the right flags
Hi there,
I can resend and then get blocked again.
I’ll recommend writing the code in the field instead of copy-pasting it directly.
For now I assume this might only affect already registered user, when activation 2 step auth. I assume new users will get the right flags
That’s right. Only registered users are affected.
I hope the information provided helped resolve your issues. Given that we have not received a response, I will mark this post as resolved. If you still need some assistance, please feel free to open a new support topic, and we would be happy to assist.
Thank you!
