Defender pro audit login still showing user login fail

I changed my wp-admin URL, but i am keep getting reports of “User login fail.” in Audit logging. There is any way to know what URL was used to login?

  • Panos
    • SLS

    Hi Talal ,

    Could you try disabling XML-RPC on your WordPress site for a while and see if this fixes this?

    There are several ways you can disable it:

    1. adding the following in a mu-plugin:

    add_filter('xmlrpc_enabled', '__return_false');

    If you are not familiar with mu-plugins you can read more about them here:

    2. adding the following in you htaccess file:

    <Files xmlrpc.php>
    order deny,allow
    deny from all

    3. Renaming the file

    xmlrpc.php to xmlrpc.php.txt

    That file is in the main folder of your WordPress installation.

    Please let us know if you still have this issue after disabling XML-RPC.


Thank NAME, for their help.

Let NAME know exactly why they deserved these points.

Gift a custom amount of points.