Accessing 2FA Self hosted site via iOS app

  • neoswf

    (@neoswf)


    1 month ago

    HI there

    Just documenting problem I just have solved, for future generations to come!

    Once u try to access a 2FA (rank math in my case) self hosted website, via ios app, you will not succeed.

    Only way to do so, is to disable this configuration:

    Require 2FA for XML-RPC call authentication

    Login security >> Settings

    Once you manage to disable this configuration, login will work as a charm.

    Only doubt I got is – is that safe enough?

    Hugs!

Viewing 3 replies - 1 through 3 (of 3 total)
  • George Appiah

    (@gappiah)

    1 month ago

    Well, this is not a WordPress feature though. In fact, WordPress has no 2FA at all.

    As such, this will depend on the specific plugin offering the 2FA feature, and not a universal panacea for “Accessing 2FA Self hosted site via iOS app”. Some 2FA plugins may not even have the ability to bypass 2FA for XML-RPC calls at all.

    Thread Starter neoswf

    (@neoswf)

    1 month ago

    I agree thats its aint WP feature, but this post will serve as a helping resource for ones that will need help.

    I know I needed, for years, and only lately I have discovered how to bypass that.

    Thats why I see this post as valid to stay and not been removed.

    Tamirat B. (a11n)

    (@tamirat22)

    4 weeks, 1 day ago

    Thanks for sharing your feedback @neoswf.

    For context, XML-RPC is required for Jetpack to connect and sync properly with your site, and the WordPress/Jetpack mobile app relies on this as well for self-hosted sites. So any plugin that blocks or adds authentication barriers to XML-RPC can interfere with these connections.

    For further guidance on Rank Math’s settings, I’d recommend checking with their support.

    Cheers!

Viewing 3 replies - 1 through 3 (of 3 total)

You must be logged in to reply to this topic.