Securepress | Wordpress Security

Enhanced Security

Features

Multi-Factor Authentication (MFA): App Based(Google Authenticator, etc), Hardware(Yubikey), and SMS MFA options available
Single Sign On (SSO): Simplify the login & registration process by adding SSO options to your logins, or by removing password logins entirely!
Bruteforce Protection: Built in protection for brute force and credential stuffing attacks, including throttling and optional captchas!
Public Breach Monitoring: Prevent users from logging in if their password has been exposed in a recent breach until they've done a password reset!
Account Takeovers: Protect your users sessions with advanced ATO prevention, and say goodbye to cookie theft!
IP/Geo Controls: Restrict who can access your login, and admin with IP whitelists or blacklists, as well as by geo!
Audit Logs: An easy to parse dashboard audit log is available to track logins, and actions taken within wordpress. Also available via an API or, have logs delivered via Webhook!
Passwordless Options: Go passwordless, and use Magic Links!
User Syndication: If your team manages multiple Wordpress sites, automatically sync users and roles across installations!

Frequently asked questions

Can’t find the answer you’re looking for? Reach out to our customer support team.

Can I add additional sites?: Yes, additional sites can be added to either the basic or pro plan for $0.25/mo each, and are eligible for the annual discount. Additional sites purchased will be pro-rated to fit your current billing cycle.
What are Magic Links?: Magic Links are a form of passwordless authentication in which an email is sent to the user with a short lived single use link to click for authentication, instead of using a password.
What is MFA?: MFA stands for Multi-Factor Authentication. It is an additional layer of security that requires users to provide multiple forms of identification to access their accounts. This is typically done with an authenticator app(such as the Google Authenticator) that generates random codes, or by sending a text message to a user with a random code.
Does SecurePress support SMS based MFA?: Yes, however this may be an additional usage based charge. You have the option to provide your own method such as Authy or AWS Pinpoint, or pay-to-use our sender, which is Twilio. The per message rates can be found at https://www.twilio.com/en-us/sms/pricing/us - we don't charge any additional fees for this integration.
What is SSO?: SSO stands for Single Sign-On. It allows users to access multiple applications or websites with a single set of login credentials.
Can I use MFA and SSO together?: Yes, but no. If a user is using SSO, the SSO provider, such as Google, would handle the MFA when the user logs into their Google account. There would be no additional MFA required when logging into Wordpress.
What are distributed sessions?: This is a way to persist sessions across multiple servers, by storing them in a separate data store. This means you can scale your site with multiple servers, without having to worry about which server your users logged into.
What are breached password notifications?: If a password is exposed in a public or known data breach, we will notify the user and logins for that user will be prevented until a password reset is completed. Known exposed passwords will also be prevented from being used on creation.
Does SecurePress also handle password reset and registration pages?: Yes, SecurePress manages the reset page by default, and can optionally be enabled to manage registration pages as well.

Secure Wordpress Identity & Access Management

Enhanced Security

Secure your WordPress site

Free Plan

Basic Plan

Pro Plan

Frequently asked questions