We cannot get iThemes Security to lockout any users, even though we have failed to correctly login over 10 times (using bogus passwords). What are we doing wrong? The IPs say they are white-listed, but there are at present NO white-listed IP’s during testing. Any ideas? Also, do we need to buy the Pro version to get emails saying a user account has been blocked for too many failed login attempts?
I am testing this plugin to lockout users after 3 bad attempts. I see a log message stating that I have attempted bad login attempts, but the plugin does NOT lock me out. What needs to be configured to do so? Also, I would like users who get logged-out after 3 failed attempts to be allowed to try again after 15 minutes. How do I configure this?
