Sorry, we don't support your browser.
Install a modern browser
Shield Security for WordPress
Let us know what security features you want to see in
Powered by Nolt
Make a suggestion
Receive an email when something went wrong with an automated update
I really like the automatic update features, however, would it be possible to add the option to only receive an email when something went wrong with an automated update? (I like having automated updates but I still want to have some kind of control
Limit access by time to user roles
I want to limit access by time to user roles. So a user role logs in but they only have access for say 75 mins.
Block mixed content
Blocking mixed content will save many sites from being shown as insecure, I'd suggest putting this in as a feature request to add this to your default options. Ticket https://icontrolwp.freshdesk.com/a/tickets/12661
Add the Google Authentication options to the profile page
Add Google Authenticator to user frontend edit profile page (or settings page) by buddypress membership management system.
Referrer line in traffic log
Add a line for the referrer so there is a way to determine where the entry in the traffic log came from. I.e. was it a direct access or was it coming from another page link. Screenshot: https://share.getcloudapp.com/X6uzgrw6
Get a report on all sites in one place
I love the Dashboard of Shield Statistics. With all these sites, going into the logs to see info about these attacks. In one look, I can see the logins attacks and session that are attacking. As I was installing settings from site to site I could s
Add or reduce traffic entries on robots.txt file
I adjusted my robots.txt file a few days ago to include “ahrefs”. It rapidly divided the traffic in half. It would be good to be able to add (or reduce) entries on that robots.txt file through ShieldPro.
Add spam protection for forms, including Contact Form 7
Ability to add spam protection for forms, including Contact Form 7. Without it, I still need to run Akismet which conflicts with Shield and forces me to disable the Spam protection module in Shield. It would be great if we could use Shield protectio
2FA: Force users to use Google Authenticator
I've enabled 2FA via Google Authenticator. But it seems like the existing users are not forced to enable Google Authenticator. I'd like to force my users to use 2FA Google Autehtntication. Also, it would be good to see which user has enabled 2FA Go
Login Guard: Enable the Bot Protection for login forms separately
Especially when using woocommerce it would be perfect if one could enable the Bruteforce Protection separately - exclusively for the Site-Dashboard-Backend Login Form. At the moment one can only enable the brute force protection for all Login Forms
Is it possible to embed the Google 2FA setup in “your profile” so that is available in custom profile forms ? Perhaps a shortcode, or custom code ?
Theme / Skin 2FA prompt
Can the 2FA prompt be customized so that it looks like the website’s theme ? I use a dark theme, and as soon as the 2FA prompt appears, it’s like a sudden floodlight being placed in front of you
Add a way to ignore the redirect when scanning files
Add a way to ignore the redirect we have on our site to be able to scan files. I.e.: domain.com redirects elsewhere, but we still want to run scans on domain.com/(files).
Possibility to disable theme scan specifically
We push changes to our custom themes across clients all the time, so we don't want the plugin to scan these themes and send us mails all the time. A feature request would be the possibility to add kind of a “robots” file to the theme, that the plug
Notification emails as daily/weekly digest
To add the ability to change various types of notification emails into a daily or weekly digest. For example, I'm getting lots of emails on a daily basis since I'm managing so many client's sites in iCWP. I'd like to be able to make some of the n
Make a suggestion