Magento 2 Secure Your Admin

magento-2-tutorial
secure-your-admin
admin-security

It is important to ensure and upgrade the security of your administration. Hence, you should manage the setting to Secure Your Admin to protect your system as well as suitable with the characteristic of your store. To help you understand about the security function that Magento 2 supplies, let me instruct you how to find and configure admin security effectively.

Secure Your Admin

  • Step 1: Go to the Security tab
  • Step 2: Set options for the Security section
  • Step 3: Save the customization.

Step 1: Go to the Security tab

  • On the Admin sidebar, click Stores > Settings > Configuration.
  • In the panel on the left, choose Advanced > Admin > Security.

Step 2: Set options for the Security section

  • In the Add Secret Key to URLs field, leave “Yes” as in default to enable a secret key to Admin URLs or choose “No” to disable it. Because Secret Key is useful for preventing CSRF (Cross-site request forgery) Attack, It is recommended to be activated.
  • In the Login is Case Sensitive field, select “Yes” to recognize the difference between upper and lowercase characters then demand the user to login with the exact account name and password.
  • In the Admin Session Lifetime (seconds) field, enter a number which is required to be greater than 60 to determine the time that a user is allowed to not have any action in a session before the system auto-logout the account. To skip this setting, leave the field blank.
  • In the Maximum Login Failures to Lockout Account field, set a number to decide how many time a user can type the wrong password before their accounts are locked.
  • In the Lockout Time (minutes) field, enter the number of minutes to lock an account before the user can login again.
  • In the Password Lifetime (days) field, set the number of days a password can be used before it expires. Leave the field blank if you do not want to activate this feature.
  • In the Password Change field, select “Forced” to require the user to change their password before it expires or choose “Recommended” to give advice about password resetting. Secure Your Admin

Step 3: Save the customization.

  • Click Save config button in the upper-right corner when you are done.
Mageplaza One Step Checkout helps reduce the abandonment rate as well as increase the conversion rate dramatically. Mageplaza Layered Navigation brings a list of filters to help your customers search and get the favourite products in the shortest way. Mageplaza Social Login (FREE) supports 11+ types of social networks.


It comes to the end of tutorial: Magento 2 Secure Your Admin.

Please leave comments if you have any questions, feedbacks.

Comments for Magento 2 Secure Your Admin

You also may like these Magento 2 Extensions

One Step Checkout

$199
18 reviews

Layered Navigation

$149
11 reviews

Store Locator

$199
2 reviews

Shop By Brand

$99
no review

Zoho CRM

$399
no review

FAQ

$149
10 reviews

Better Blog

FREE
7 reviews

Affiliate

$149
7 reviews

People also searched for:

  • Magento 2 Secure Admin
  • magento 2 secure admin url
  • magento 2 admin secure connection failed
  • magento 2 ssl admin
  • magento 2 ssl admin not working
  • magento 2 disable secure admin
  • magento 2 admin ssl redirect loop
  • magento 2 use secure urls in admin database
  • magento 2 admin security use form key
  • magento 2 use secure urls in admin
  • magento 2 secure admin