You install Limit Login Attempts Reloaded for security. Now you get email alerts. “Someone was locked out.” That someone is you. You forgot your password. Tried multiple times. Got locked out. Now you are annoyed and locked out.
A common issue is that the plugin treats all failed attempts the same. It does not know which attempts are yours. If you mistype password, plugin locks your IP. The plugin is not broken. You triggered the protection.
Why Limit Login Attempts Locks Out Owners
The plugin counts failed login attempts from any IP address. After set number of failures (default 3-5), IP is locked. It cannot distinguish between owner and hacker. Both look the same: failed password attempts. Your own mistakes trigger lockout.
This is not Limit Login Attempts being bad. Brute force protection blocks everyone equally.
The Most Common Owner Lockout Scenarios
- Forgot password and tried multiple times
- Password manager auto-filled wrong credentials
- Changed password but old password saved in browser
- Multiple admins using same IP (office network)
- Bot tried to hack your account (you got caught in crossfire)
All trigger lockout.
How to Recover From Lockout
- Access site via FTP or hosting file manager
- Rename “limit-login-attempts-reloaded” plugin folder
- Log into WordPress normally
- Go to Limit Login Attempts → Settings
- Add your IP address to whitelist
- Rename plugin folder back
Whitelist prevents future lockouts.
How to Whitelist Your IP Address
Go to Limit Login Attempts Reloaded → Settings → Whitelist. Add your IP address. Also add office IP, home IP, VPN IPs. Save. You will never be locked out again.
Find your IP by searching Google “what is my IP.”
Alternative: Increase Allowed Attempts
Instead of whitelist, increase allowed attempts to 10. Go to Settings → Limit Login Attempts → General. Set “Max retries” to 10. Set “Lockout time” to 1 hour. You have more chances before lockout.
Less secure but fewer lockouts.
People Also Ask About Limit Login Attempts Alerts
Why do I get lockout alerts for my own login attempts?
You mistyped password too many times. Whitelist your IP or increase attempts.
Should I disable Limit Login Attempts Reloaded?
No. Whitelist your IP. Keep protection for others.
Is Limit Login Attempts Reloaded worse than Wordfence for lockouts?
Wordfence also locks out owners. Whitelist IP in any security plugin.
Final Thoughts
If Limit Login Attempts Reloaded locks you out, whitelist your IP. Or increase allowed attempts. Your own mistakes will no longer trigger lockout.