Whether online or offline, security is the concern of all enterprises. As a physical store owner, when you are not looking, you want to know what happened to your business. The solution can be as simple as installing a security camera. But what should I do when running a WordPress site that can be accessed by multiple users or complete strangers? WP security audit log is the solution you are looking for. This free and easy-to-use word press active login plug-in can monitor anything that happens later. Maintain an activity log (also known as an audit trail or audit log) of all changes made by users in WordPress. Site and multi site networks. You can not only monitor potential security violations, but also check whether users are doing what they should do when they log in to the website. The
WP security audit log developed the word press security plug-in, which was developed by WP white security, a European company operated by Robert Abela. This post will introduce the main features of this activity log plug-in. If you need to use it on the WordPress website, 15% of the coupon code can be used to upgrade to the advanced version. As can be seen from the name of the WordPress activity log plug-in function plug-in, its purpose is to maintain a detailed audit log of everything that happens to the website administrator and the client. The plug-in runs on WordPress and WordPress multi sites. The
Many people use the WordPress activity login plug-in to track user operations and productivity, but keeping an activity log has the following different benefits: WordPress site troubleshooting – no more guessing! Generate user and site activity reports to determine whether the business site meets compliance requirements and identify suspicious behavior before security issues arise. By observing abnormal activities, it can often be prevented before the hacker attack or at the initial stage of the process, so as to limit the damage caused by malicious hackers to the site. The
The WP security audit log maintains a wide list of potential activities and changes in the log in WordPress. Of course, you don’t have to track all items, and you can easily disable (and re enable) all types of events and monitoring. Several important activities recorded include: New users register WordPress site file changes (not limited to WordPress core, plug-ins or themes) user configuration changes such as role, password, email or other details changes plug-ins and themes installation, activation, update WordPress settings change login attempts fail and tables are created, modified, or deleted from the 404 error database, such as disabling or deleting permanent links and administrator email IDs. Various PHP notifications, including errors, warnings, notifications, and end errors. The plug-in is also a multi site activity log for WordPress, so there are specific events to help track activity across the network. As a result, you can monitor the following on multiple sites: The
Changing user roles changing sites (for example, adding a new site, keeping an existing site, deleting or changing an existing site) topics and plug-ins will be installed, activated or disabled on the network, such as changing network users (network users create, add or delete on the site), and granting the user the highest administrator privileges. Activity log plug-in settings WP security audit log plug-in installation is simple. the plug-in from the WordPress repository. Post installation and activation log level details
The setup wizard appears, allowing you to configure basic information, such as information, archiving rules, permissions, and so on. The
After configuring the basic functions of the plug-in, the plug-in will automatically start to maintain a large number of changes. You can view the word press activity log in the audit log viewer project of the audit log viewer plug-in menu. For all changes in the activity log, the plug-in reports the event ID, severity, date and time, user and role, IP address of user login, and actual changes. The activity log is very comprehensive, reporting not only changes to the post, but also changes in the post (if it is content, URL, author, or title). Change activity log detail level
By default, the plug-in has two levels of detail for the activity log: basic and weird. If you are using the activity log for the first time, it is recommended to start from the default level to avoid being overwhelmed by data. If you need to keep a log of other changes after a few days, change the log level details in the enable \/ disable events item of the menu. You can also disable disabled events in this section and then re enable them. Events are divided into different categories, which is very easy to find. You can also refer to and search the complete activity log event list of WordPress to view the event ID of a specific event. The
In the \
In this section of \
How often should the file integrity check be run on the WordPress website when the file integrity check is enabled or disabled? Specify the files with specific extensions in the file integrity check; On a directory or file exclusion site, you can specify the following items to exclude the following items from the activity log of a word press site or a multisite network: If an object is excluded from the URL activity log that does not have a user role IP address post type custom field, the plug-in will not keep the event log related to the excluded object. The
For most cases, the advanced active login plug-in settings do not need to use the following settings here: Enable request log (for support and debugging only) reset plug-in settings to default WordPress activity log delete main
Enable WP sub site hidden mode (if the plug-in is installed on the mainwp sub site) advanced activity log function the activity log function can be used for free. Upgrade to the advanced version of WP security audit log plug-in and enjoy the benefits of the following functions: If you confirm who logs in and upgrades to the advanced version of the session management plug-in, you can view who logs in to the WordPress site in real time and end the session with a single click of the mouse. You can also configure rules to prevent or limit the number of concurrent sessions that users can have. Having to log in to WordPress can be painful whenever you try to receive an immediate notification of important changes via email or SMS messages to acknowledge a specific set of events. This also means that you may not notice malicious activity until the damage is complete. The advanced version of the plug-in allows you to configure triggers to receive immediate notification via e-mail or SMS when specific changes occur at the site. For example, according to the above screenshot, you can configure the plug-in to modify the file within a specific time period or issue a warning when logging in outside working hours. In the activity log, searching for androg sometimes needs to keep the tags of specific activities or users. If a large number of events are logged, the filtering results may be boring. In the advanced version, you can search using text-based queries and fine tune search results using filters. You can filter using date, event ID, IP address, user name, and multiple other filters. This greatly reduces the time required to find important information. The advanced version of the WP security audit log plug-in for generating WordPress site and user activity reports can also generate all types of WordPress log reports. One of the following conditions can be used for reporting: If you select a specific warning or warning code specific condition for all site users or all user roles or all roles on a specific site or network, you can generate reports in CSV or HTML format. That is, you can easily import reports into Excel or Google spreadsheets to perform automatic parsing for storage, printing, or other software. You can also configure and schedule reports to be received by email daily, weekly, monthly, or quarterly. Activity log database management by default, the activity log (audit trail) of a WordPress site is stored in the WordPress database of its tables. There may be two problems with this setting. There is no separation between database size and WordPress data and logs, so the logs may be tampered with when hackers attack. In the advanced version of the plug-in, the remote server can also store activity logs in a separate database, thereby improving the performance and security of the site. Activity log consolidation and centralization many enterprises use solutions such as Splunk and snak to centralize logs and other software events. The advanced version of the WP security audit log plug-in can easily integrate the plug-in with solutions such as Papertrail, Splunk and syslog, so the log can be automatically exported to these systems and the word press activity log can be integrated with all other contents. Support and plug-in update WP security audit log provide free plug-in support through WordPress forum. This support is only available for the free version, but when viewing the support forum, most of the issues (including those a week ago) have been resolved. After upgrading to high-end, you can also get high-end support and updates. Advanced support will be available by phone and email during normal business hours from Monday to Friday. support
