Magento 2 security designed
to keep the bad guys out
There have been up to 650,000 stores using Magento 2 platform all over the world, and they are being ideal prey for hackers. Your Magento 2 store needs Mageplaza Security module to keep the bad guys out. Mageplaza Security resolves common Magento 2 security issues
Mageplaza Security for Magento 2 is a perfect security solution for online stores built based on Magento platform. The module helps prevent break-in attempts to your store from hackers. Thanks to an effective warning system, your valued information will be completely protected
Highlight featuresWhat stands out in Security
Mageplaza Security extension provides store admins a security checklist which automatically displays all warnings of possible security risks about admin username, captcha, Magento version and database prefix.
Brute Force Attack Protection
Admins are allowed to set a limit for the number of failed login attempts. This restriction will become a fundamental for the module to send shop owners a warning message whenever the store encounters risks of break-in attempts.
Mageplaza Security extension tracks and records all logins in a log along with its information like ID, Time, User name, IP, Browser Agent, Url and Status (Failure or Success). Store admins can view the details and trace the IP.
SECURITY PRO HIGHLIGHT FEATURES
File change detection
Important files in the admin panel should not be changed without any awareness. Unwanted adjustments in the backend made by hackers are harmful to online stores. Hence, a tracking and warning system will definitely provide better protection for your business. The module is able to detect every single change of files in the backend such as adding, editing and deleting. Once these changes are found, they are also recorded and saved in the admin log. Moreover, a report email will be sent to admins shortly.
That an online store may have multiple admins and that hackers can break in and view or invisibly harm your store force us to find a solution to help you manage and protect it better. An advanced report of all actions performed in your store’s admin panel. In the action log, the information about time, IP, username, specific actions or changes will be reported in details. The datalog can also be compressed and backed up automatically to optimize your store's performance
It may seem unusual when your store's admin panel is logged into during your time/days off. Besides, break-ins often occur when your store is not looked after by you and admins. To eliminate the risks, unnecessary login attempts should be stopped. Hence, the away mode can be enabled to prevent any logins made in specific time. You will have peace of mind and have a good night.
Much moreCheckout more details of Mageplaza Security
Block or allow a range of IP addresses in backend. It is easy to setup in backend.
Warning email templates
Various warning templates can be used in the backend. These become warning emails sent to store owners
A short report of the 5 most recent logins is featured on the Dashboard with the information of user names, login status and time.
Smart PricingChoose your suitable edition
Frequently Asked QuestionsWe have answered a wide range of Questions for your Convenience
v1.1.313 August 2018
- Update Module license
- Fixed error when compiling module on Magento 2.2
v1.1.206 April 2018
- Update email template “lock-user”
v1.1.102 April 2018
Fix bug get wrong IP address if server use Varnish Cache
v1.1.029 March 2018
- Add Checklist feature
- Add Module Activation
- Move backend module menu to Magento System menu
v1.0.014 March 2018
Initial module v1.0.0
Feature Comparison Table
Mageplaza Security includes two packages: Standard and Professional. Let's take a glance at the comparison table.
|Enable/Disable module from the backend||Yes||Yes|
|Send warning mails to chosen email addresses||Yes||Yes|
|Restrict the number of failed login attempts allowed in a session||Yes||Yes|
|Warning email templates||Yes||Yes|
|Detect logins from Blacklist IPs and block these break-in attempts||Yes||Yes|
|Ability to allow accesses from Whitelist IPs only||Yes||Yes|
|Ability to prevent or grant logins from a range of IP addresses||Yes||Yes|
|Keep track and record login details in the backend||Yes||Yes|
|Display login status (Failed or Successful) in the log||Yes||Yes|
|Trace login IPs function||Yes||Yes|
|View login details||Yes||Yes|
|Display the 5 newest logins on the Dashboard with their Usernames, Login status and Time||Yes||Yes|
|Display the Last Login information||Yes||Yes|
|Provide security checklist||Yes||Yes|
|Auto-fix security issues||_||Yes|
|Detect file changes and notice admins on a regular basis||_||Yes|
|Trace all actions performed by anyone in the backend||_||Yes|
|Log all actions performed in the backend in a report||_||Yes|
|Disallow logins during specific time||_||Yes|