Lock Down User Registration with All In One WP Security & Firewall
In this section of the guide to the All In One WP Security & Firewall plugin, we will take a look at User Registration, where you can add a Captcha to registrations, and require they are all manually approved.
Step 1) Login to the WordPress Dashboard.
Step 2) On the left-hand sidebar of the Dashboard navigate to WP Security -> User Registration.
When a new user registers for your site, the details are displayed in the table shown below. This feature allows the Administrator to manually approve the new user and add a captcha code to the registration page.
The options for this feature are shown below.
- Manually Approve New Registrations
If your site allows people to create their own accounts via the WordPress registration form, then you can minimize SPAM or bogus registrations by manually approving each registration. This feature will automatically set a newly registered account to pending until the Administrator activates it.
A. Security Points Buttons The Basic button displays the Feature Difficulty.
The 0/20 button displays the Security Points assigned to this. Since there are no options selected yet, the security points are set to 0/20.
B. Enable manual approval of new registrations: Place a check mark in this check box if you want to automatically disable all newly registered accounts so that you can approve them manually. Click the Save Settings button to activate this option. C. Bulk Actions Click the down arrow located to the right of the Bulk Actions dropdown box to view the available options:
Select the desired option. Placing a check mark in the User ID heading selects all users in the current view. Click the Apply button to complete the selected process.
Once a check mark is placed in the check box shown above and the Save Settings button has been clicked, your security points should now be 20/20.
- Registration Captcha
This option allows you to add a captcha form on the WordPress registration page. Users who attempt to register will also need to enter the answer to a simple mathematical question – if they enter the wrong answer, the plugin will not allow them to register. Adding a captcha form on the registration page is another effective yet simple SPAM registration prevention technique.
As shown in earlier examples, the security points are currently at 0/20. Placing a check mark in the check if you want to insert a captcha form on the WordPress user registration page (if you allow user registration) check box and clicking the Save Settings button will activate this option and change the security points to 20/20.
The next step in the guide will focus on the Database Security feature.