Protect & Secure Online Store

Built by the Magento Security Experts

SVGshowcaseMockup

Protect your website from attacks and enhance store management!

circles

MAGENTO 2 SECURITY EXTENSION
KEEP THE BAD GUYS OUT

There have been up to 650,000 stores using Magento 2 platform all over the world, and they are being ideal prey for hackers. Your Magento 2 store needs Mageplaza Security module to keep the bad guys out. Mageplaza Security resolves common Magento 2 security issues

Magento 2 Security extension is a perfect security suite for online stores built based on Magento platform. Mageplaza Security Suite helps prevent break-in attempts to your store from hackers. Thanks to an effective warning system, your valued information will be completely protected

66%
STORES HAVE VULNERABILITY
80%
STORES DO NOT USE SSL
2.2k+
STORES HAVE 4+ SECURITY ISSUES

HIGHLIGHT FEATURES!
What stands out in Security

magento 2 Security Checklist

Security Checklist

Magento 2 Security extension provides store admins a security checklist which automatically displays all warnings of possible security risks about admin username, captcha, Magento version and database prefix.

magento 2 Security Checklist

Brute Force Attack Protection

Admins are allowed to set a limit for the number of failed login attempts. This restriction will become a fundamental for the module to send shop owners a warning message whenever the store encounters risks of break-in attempts.

Brute Force Attack Protection

Login Log

Mageplaza Security extension tracks and records all logins in a log along with its information like ID, Time, User name, IP, Browser Agent, Url and Status (Failure or Success). Store admins can view the details and trace the IP.

MAGENTO 2 SECURITY PRO FEATURES

magento 2 Security file-change-detection

File change detection

Important files in the admin panel should not be changed without any awareness. Unwanted adjustments in the backend made by hackers are harmful to online stores. Hence, a tracking and warning system will definitely provide better protection for your business. The module is able to detect every single change of files in the backend such as adding, editing and deleting. Once these changes are found, they are also recorded and saved in the admin log. Moreover, a report email will be sent to admins shortly.

Action log

Action Log

That an online store may have multiple admins and that hackers can break in and view or invisibly harm your store force us to find a solution to help you manage and protect it better. An advanced report of all actions performed in your store’s admin panel. In the action log, the information about time, IP, username, specific actions or changes will be reported in details. The datalog can also be compressed and backed up automatically to optimize your store's performance.

Brute Force Away mode

Away mode

Mageplaza Security extension tracks and records all logins in a log along with its information like ID, Time, User name, IP, Browser Agent, Url and Status (Failure or Success). Store admins can view the details and trace the IP.

FEATURED TESTIMONIALS
Mageplaza Security is a unique solution

What our customers say about Mageplaza Security extension.

Review
double-ellipse-top-right

MUCH MORE
Checkout more details of Mageplaza Security

SVG

BLACKLIST/WHITELIST IPS

Block or allow a range of IP addresses in backend. It is easy to setup in backend.

SVG

WARNING EMAIL TEMPLATES

After being enabled in the backend, the page will automatically scroll to top when loading results for your visitors to view.

SVG

LOGIN REPORT

A short report of the 5 most recent logins is featured on the Dashboard with the information of user names, login status and time.


SMART PRICING
Choose your suitable edition

How We Guarantee?

Better guarantee of maintanance from consistent & customer-centric policies.

We don't sell products for one time. We provide lifetime solutions which help our customers thrive with their businesses.

SVG

60-day Money Back

Extend your experience period to 60 days. Money-back guaratee with no questions asked

SVG

1-year Free Support

Get premium support for the first year to guarantee no conflicts, the best integration & stability..

SVG

One-time Payment

Pay only once and get the solution for a lifetime. No hidden cost.

SVG

Lifetime Free Updates

Get technical updates every month for free without paying extra. Keep it best forever.

FREQUENTLY ASKED QUESTIONS
We have answered a wide range of questions for your convenience

If the maximum number of times logins are failed is reached, a warning email will be sent to email addresses which are set.
You sure can. It is easy to customize email templates. Read this guide
In this case, any login attempts from your IP address will be blocked. If you assume that this is a mistake, please follow this guide to unblock.
Yes! It logs both Failure and Success status.
Mageplaza Security extension the standard version is still free on Github. However, the Github version does not include Mageplaza technical support package. If you still consider downloading the Security module on Github, please visit here.
Magento 2 Security by Mageplaza is one of the most advanced Security extension. It comes with powerful features which help you save time to send invoice manually and your invoices are professional. Fully compatible with:M2 OneStepCheckout, Social Login, Required Login, Login as Customer...
Mageplaza Security is compatible out-of-the-box with Magento Open (Community), Magento Commerce (Enterprise), Magento Cloud 2.2.x, 2.3.x, 2.4.x.

Ready to get started?

RISK-FREE solution. It's time to try NOW.

Or Talk to us
abstract-shapes-8
abstract-shapes-5

Live Demo

Standard Professional
General configuration
Enable/Disable the module
Enter the email address to receive warning emails.
Brute Force Protection
Enable/Disable using Brute Force Protection
Set Maximum number of failed login attempts
Allowed duration
Locked User Alert
Choose an email template to send alerts
Blacklist/Whitelist IPs
Enter Blacklist IPs
Enter Whitelist IPs
Action Log Backup Configuration
Enable/Disable Action Log backup
Choose the frequency of action log backup: Daily, Weekly, Monthly
Enable Clear Log After Backup
Away Mode
File change configuration
Allow exclude files and folders
Create Master Hashes
Automatically check file changes and send an alert email daily using cron
Choose an email template to send alerts
Records
Record the Login Log
View login details
Display the 5 newest logins on the Dashboard with their Usernames, Login status and Time
Display the Last Login information
Provide Security Checklist
Auto-fix security issues
Trace all actions performed by anyone in the backend
Report on Action Log Backup
Detect file changes and notice admins on a regular basis
Support
Auto-fit with every device (Mobile, Tablet, PC)
Support multiple stores
Support multiple languages
Fully compatible with Mageplaza extensions
1-year free support
Lifetime updates
60 days guarantee money back

REVIEWS (22)

15 March 2020

Admin

This extension was able to provide us details and we were able to blacklist IPs that were attempting to brute force admin area. The file change detection is not working on 2.3.4 but we hope to resolve it with the support. Mageplaza should add additional features such as automatic blacklist addition if IP is found on the AbuseIP database for example. Overall satisfied.

Megha -Verified Purchase
30 December 2019

Keep it up Mageplaza!

Best service ever!

Ran -Verified Purchase
17 October 2019

Added Security Always Welcomed

This extension works well, as it allows me to view who's logging into the admin page. Features that should've been native to Magento but isn't! Good job Mageplaza, any added security to Magento is welcome!

Jerry -Verified Purchase
30 May 2019

Love you guys for great support!

I just worked with Eric on Security Extension and he was very fast and helpful with my issue. I definitely appreciate this kind of support and will continue to speak highly about Mageplaza!

Hasan -Verified Purchase
29 May 2019

Good extension to prevent attack!

Really good for protecting your website! It can set a blacklist or a whitelisted IP, prevent brute force attack and set a warning email! I would definitely recommend this module to keep you ecommerce safe.

xdev -Verified Purchase
25 March 2019

Exellent Module!!

I purchased the Pro version and definitely more advanced. If you have a Magento store, I think you have to buy this extension. Security is more important than anything. Thank you Mageplaza!!

wrc -Verified Purchase
20 February 2019

Simply perfect!

We installed this extension after a brute force attack. The installation was easy and done in a few minutes. I was not sure about the correct configuration so that I had to contact the support team to finish the configuration.

cheffe -Verified Purchase
07 February 2019

Must-have extension in site

This extension is very useful to track your Magento store's Admin user activities. I'm using it for some time and I found no issues with it and it works perfectly. Anyone should try this extension on their Magento store so that they can have the best logging tool in their store. Thank you

Mahesh -Verified Purchase
02 February 2019

Geat Extension

I have installed it but forgot to install the library, the support team was very kind to reinstall the library and set it up. It works great, looking forward to get the Pro version.

Moussa -Verified Purchase
03 January 2019

Great extension

Installed this extension and out of blue my Magento store is secured. Nice features, great usability, and nice coding. No bugs, all works perfectly. Highly recommended Magento 2 extension. Keep up good work!

Marina -Verified Purchase
07 December 2018

Must-have extension

This extension is very useful to track your Magento store's Admin user activities. I'm using it for some time and I found no issues with it and it works perfectly. Anyone should try this extension on their Magento store so that they can have the best logging tool in their store.

Ashan -Verified Purchase
04 December 2018

Important module

This is one important and indispensable Security module. We were looking for a Security module and found this useful one from a reliable source. And guess what! It is a free module. That's awesome!

Aziz -Verified Purchase
10 November 2018

Great module

This is a good idea to offer it with the free edition. So once you try it, you will feel that it's good enough to have the paid one. Again, I would like to mention how great the support team is. They are super friendly and willing to assist as well. I'm looking for my next step to buy the paid version.

Abdulrahman -Verified Purchase
22 September 2018

New product

I needed to view the log action in my admin website, so I tried to use this product, what it offers is not bad so you can see some logs actions.

lafaifia -Verified Purchase
17 September 2018

Great plugin

It is nice to have the ability to log the logins when you have multiple accounts and a need for seeing anywhen and anywhere they have occurred. Also, the checklist is a nice touch. Overall: Good stuff for free :=)

Markus -Verified Purchase
05 September 2018

Very good extension

The installation was so easy and because there are many colleagues who have an account, I can see exactly what is going on. This is a must-have extension. Also, the support is also very good.

Alexander -Verified Purchase
09 August 2018

Great for basic logging

This module is a very useful tool to control the basic logging of Admin users on your website. It would be better to have the action log of the users as well, but I guess it comes with a paid version :)

kaznaur -Verified Purchase
20 July 2018

Good extension

I see no issues with Security extension. It seems to be running as it should. Now I am happy with my purchase. I have tested the features, and they are working well. I recommend this to anyone who wants little extra security.

Nature Skin Shop -Verified Purchase
02 June 2018

Well Worth Having

The Standard (free) edition is a great way to get a security check that will advise you of ways to secure your store (I've implemented these changes), as well as getting a list of last logins to your admin panel. This can help reassure you that others are not accessing your store, and you can check the date of your last login to make sure that was you. The usefulness of this extension, and by making it free, means I will be considering the Professional edition.

Donovan -Verified Purchase
15 March 2018

Nice free module

I’ve got to say that it’s too good to have a free extension like Mageplaza Security. It works well on my store and helps prevent bad break-in attempts so effectively. No complaints for this.

Crue1980 -Verified Purchase
15 March 2018

Great support

I like the way Mageplaza support team works. Quick and effective! This extension is also awesome with adequate features for my online store.

Harry -Verified Purchase
15 March 2018

Good quality code

I’m pleased with the quality of the extension, no bugs for my store. The extension gives me peace of mind about the security of my online store. Good work, Mageplaza~

Lucy -Verified Purchase

Leave a Review

How do you rate this product?

Your email address on Mageplaza's store

Plain text, no HTML tags.