Support

Admin Tools

#35248 Users getting deactivated - Does AdminTools do this

Posted in ‘Admin Tools for Joomla! 4 & 5’
This is a public ticket

Everybody will be able to see its contents. Do not include usernames, passwords or any other sensitive information.

Environment Information

Joomla! version
n/a
PHP version
n/a
Admin Tools version
n/a

Latest post by dunwin on Wednesday, 19 May 2021 08:38 CDT

Tuesday, 18 May 2021 08:27 CDT

dunwin

Please look at the bottom of this page (under Support Policy Summary) for our support policy summary, containing important information regarding our working hours and our support policy. Thank you!

We have quite a few of our users getting automatically deactivated. We think, but do not know this could be something to do with login Failures (ie wrong password).

Searching the web, we found this article

https://www.doctorjoomla.com/support-docs/94-users-deactivated-for-no-reason

It mentions Admin Tools. But I can't find anything in our set up would do this or in the Joomla user options.

Could it be Admin Tools?????

If so, what options might the cause?

 David Unwin - London UK

Tuesday, 18 May 2021 09:50 CDT

tampe125

Hello,

are those regular users or Special users (managers, administrators and super users)?

Inside WAF Configuration there's an option to deactivate a user if it gets too many security exceptions, the option you're looking for is Deactivate user after inside the Hardening Options tab.

Davide Tampellini

Developer and Support Staff

🇮🇹Italian: native 🇬🇧English: good • 🕐 My time zone is Europe / Rome (UTC +1)
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Tuesday, 18 May 2021 12:01 CDT

dunwin

Hi Davide,

We have it set to deactivate after 5 attempts in 1 day (see attachment), I don't recall setting this, so I think it is default.

The users who are affected are our regular users (ie Registered), not Managers, Super User's etc.

Should we set this to attempts in 1 hour rather than 1 day? or what would be your advice?

Thanks

David

 David Unwin - London UK

Edited by on 2021-06-17 20:45 CDT

Wednesday, 19 May 2021 03:04 CDT

tampe125

Ok, so this is the cause of your issue. Yes, I'd lower it to 1 hour, attacker users will try way faster than a user, so you should be on the safe side.

Davide Tampellini

Developer and Support Staff

🇮🇹Italian: native 🇬🇧English: good • 🕐 My time zone is Europe / Rome (UTC +1)
Please keep in mind my timezone and cultural differences when reading my replies. Thank you!

Wednesday, 19 May 2021 08:38 CDT

dunwin

Thank you very much

 

David

 David Unwin - London UK

Support Information

Working hours: We are open Monday to Friday, 9am to 7pm Cyprus timezone (EET / EEST). Support is provided by the same developers writing the software, all of which live in Europe. You can still file tickets outside of our working hours, but we cannot respond to them until we're back at the office.

Support policy: We would like to kindly inform you that when using our support you have already agreed to the Support Policy which is part of our Terms of Service. Thank you for your understanding and for helping us help you!