iThemes Security Not Updated on both single site and all sites

Hi

I’m new to MainWP but I have added 40+ sites already. It works like a charm except that I can’t get the iThemes Security extension to work

I have iThemes Security Pro installed on all my child sites, and all of them has disabled Filter Long URL Strings in System Tweaks, and I have added the IP for the Dashboard site in the Lockout White List in Global Settings. But when I try to save general settings to either a single site or to all sites nothing happens except a red error saying “Not Updated”.

I have tried with both iThemes Security activated and disabled on the main dashboard site, but it makes no difference.

Please help. Thanks

Best regards
Torben

Hey @webfronten welome to the community!

Could you please post your System Reports?

MainWP Dashboard > Status > Server > Copy System Report for the MainWP Community
Child Site > Settings > MainWP Child > Server Information > Click the blue button.

Hi Keith

Of course. Here you are:

### Server Info                    Required                                               Detected                                     Status   ###

MainWP Dashboard                   
MainWP Dashboard Version           4.0.7.1                                                4.0.7.1                                      Pass        
MainWP Upload Directory            Writable                                               Writable                                     Pass        
MainWP Extensions                  
Activity Log for MainWP            1.4.1                                                  Inactive                                     Warning     
Advanced Uptime Monitor Extension  5.0.1                                                  Active                                       Pass        
MainWP Branding Extension          4.0                                                    Active                                       Pass        
MainWP Bulk Settings Manager Extension4.0.1                                                  Active                                       Pass        
MainWP Clean and Lock Extension    4.0.1                                                  Active                                       Pass        
MainWP Client Reports Extension    4.0.3                                                  Active                                       Pass        
MainWP Custom Dashboard Extension  4.0                                                    Active                                       Pass        
MainWP Favorites Extension         4.0.2                                                  Active                                       Pass        
MainWP Google Analytics Extension  4.0.1                                                  Active                                       Pass        
MainWP iThemes Security Extension  4.0.1                                                  Active                                       Pass        
MainWP Maintenance Extension       4.0.1                                                  Active                                       Pass        
MainWP Page Speed Extension        4.0.1                                                  Active                                       Pass        
MainWP Pro Reports Extension       4.0                                                    Active                                       Pass        
MainWP WooCommerce Shortcuts Extension4.0                                                    Active                                       Pass        
MainWP WooCommerce Status Extension4.0.1                                                  Active                                       Pass        
Toolbar Extras for MainWP          1.1.0                                                  Inactive                                     Warning     
WordPress                          
WordPress Version                  >=3.6                                                  5.3.2                                        Pass        
WordPress Memory Limit             >=64M                                                  256M                                         Pass        
MultiSite Disabled                 =true                                                  true                                         Pass        
FileSystem Method                  = direct                                               direct                                       Pass        
PHP                                
PHP Version                        >=5.6                                                  7.4.2                                        Pass        
PHP Safe Mode Disabled             =true                                                  true                                         Pass        
PHP Max Execution Time             >=30 seconds                                           300                                          Pass        
PHP Max Input Time                 >=30 seconds                                           300                                          Pass        
PHP Memory Limit                   >=128M                                                 256M                                         Pass        
PCRE Backtracking Limit            >=10000                                                1000000                                      Pass        
PHP Upload Max Filesize            >=2M                                                   128M                                         Pass        
PHP Post Max Size                  >=2M                                                   128M                                         Pass        
SSL Extension Enabled              =true                                                  true                                         Pass        
SSL Warnings                       = empty                                                                                             Pass        
cURL Extension Enabled             =true                                                  true                                         Pass        
cURL Timeout                       >=300 seconds                                          60                                           Warning     
cURL Version                       >=7.18.1                                               7.47.0                                       Pass        
cURL SSL Version                   >=OpenSSL/0.9.8l                                       OpenSSL/1.0.2g                               Pass        
PHP Allow URL fopen                YES                                                    
PHP Exif Support                   YES ( V7.4.)                                           
PHP IPTC Support                   YES                                                    
PHP XML Support                    YES                                                    
PHP Disabled Functions             apache_child_terminate,  apache_get_modules,  apache_get_version,  apache_getenv,  apache_note,  apache_setenv,  disk_free_space,  disk_total_space,  diskfreespace,  dl,  escapeshellarg,  escapeshellcmd,  get_current_user,  getmygid,  getmyinode,  getmypid,  getmyuid,  getrusage,  highlight_file,  lchgrp,  lchown,  libxml_disable_entity_loader,  link,  passthru,  pclose,  pcntl_alarm,  pcntl_exec,  pcntl_exec,  pcntl_fork,  pcntl_get_last_error,  pcntl_getpriority,  pcntl_setpriority,  pcntl_signal,  pcntl_signal_dispatch,  pcntl_sigprocmask,  pcntl_sigtimedwait,  pcntl_sigwaitinfo,  pcntl_strerror,  pcntl_wait,  pcntl_waitpid,  pcntl_wexitstatus,  pcntl_wifexited,  pcntl_wifsignaled,  pcntl_wifstopped,  pcntl_wstopsig,  pcntl_wtermsig,  popen,  posix_getpwuid,  posix_kill,  posix_mkfifo,  posix_setpgid,  posix_setsid,  posix_setuid,  posix_uname,  proc_close,  proc_get_status,  proc_nice,  proc_open,  proc_terminate,  prog_get_status,  shell_exec,  show_source,  symlink,  system, exec,
PHP Loaded Extensions              Core, FFI, PDO, Phar, Reflection, SPL, SimpleXML, Zend OPcache, bcmath, calendar, cgi-fcgi, ctype, curl, date, dom, exif, fileinfo, filter, ftp, gd, gettext, hash, iconv, imagick, imap, intl, json, libxml, mbstring, mysqli, mysqlnd, openssl, pcre, pdo_mysql, posix, readline, session, shmop, soap, sockets, sodium, standard, sysvmsg, sysvsem, sysvshm, tokenizer, xml, xmlreader, xmlrpc, xmlwriter, xsl, zip, zlib
MySQL                              
MySQL Version                      >=5.0                                                  10.4.6-MariaDB-1:10.4.6+maria~xenial         Pass        
MySQL Mode                         ERROR_FOR_DIVISION_BY_ZERO,NO_AUTO_CREATE_USER,NO_ENGINE_SUBSTITUTION
MySQL Client Encoding              utf8                                                   
Server Info                        
Server Software                    nginx/1.17.5                                           
Operating System                   Linux                                                  
Architecture                       64 bit                                                 
Server Protocol                    HTTP/1.0                                               
HTTPS                              ON - on                                                
Server self connect                Not expected HTTP response body:                       
User Agent                         Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36
Gateway Interface                  CGI/1.1                                                
Memory Usage                       16.26 MB                                               
Request Time                       1580716546                                             
Accept Content                     text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Charset Content             N/A                                                    
MainWP Settings                    
Number Of Child Sites              43                                                     
Use WP-Cron                        No                                                     
Optimize for Shared Hosting or Big NetworksYes                                                    
Automatic Daily Update             Install trusted updates                                
Abandoned Plugins/Themes Tolerance 365                                                    
Maximum number of posts to return                                                         
Maximum number of pages to return                                                         
Primary Backup System              Default MainWP Backups                                 
Maximum simultaneous requests      4                                                      
Minimum delay between requests     200                                                    
Maximum simultaneous requests per ip1                                                      
Minimum delay between requests to the same ip1000                                                   
Maximum simultaneous sync requests                                                        
Minimum simultaneous install/update requests                                                       
Active Plugins                     
Activity Log for MainWP            1.4.1                                                  Active                                       
Code Snippets                      2.14.0                                                 Active                                       
Disable Comments                   1.10.2                                                 Active                                       
iThemes Security Pro               6.3.3                                                  Active                                       
MainWP Dashboard                   4.0.7.1                                                Active                                       
MainWP Key Maker                   1.1                                                    Active                                       
Toolbar Extras                     1.4.9                                                  Active                                       
Toolbar Extras for MainWP          1.1.0                                                  Active                                       
WordPress Backup & Security Plugin - BlogVault3.4                                                    Active                                       
WP Rocket                          3.4.4                                                  Active                                       

And here for the child site:

Server configuration Required value Value Status

MAINWP CHILD
MainWP Child Version 4.0.6.1 4.0.6.1 Pass
Currently connected to dashboard URL Vedligeholdelsesaftale for dit WordPress website
WORDPRESS
WordPress Version >=3.4 5.3.2 Pass
WordPress Memory Limit >=64M 40M Warning
MultiSite Disabled =true true Pass
FileSystem Method = direct direct Pass
PHP SETTINGS
PHP Version >=5.6 7.3.14 Pass
PHP Safe Mode Disabled OFF
PHP Max Execution Time >=30 seconds 120 Pass
PHP Max Input Time >=30 seconds 120 Pass
PHP Memory Limit >=128M (256M+ best for big backups) 768M Pass
PCRE Backtracking Limit >=10000 1000000 Pass
PHP Upload Max Filesize >=2M (2MB+ best for upload of big plugins) 128M Pass
PHP Post Max Size >=2M (2MB+ best for upload of big plugins) 128M Pass
SSL Extension Enabled =true true Pass
SSL Warnings = empty error:0906D06C:PEM routines:PEM_read_bio:no start lineWarning
cURL Extension Enabled =true true Pass
cURL Timeout >=300 seconds 20 Warning
cURL Version >=7.18.1 7.59.0 Pass
cURL SSL Version >=OpenSSL/0.9.8l OpenSSL/1.0.2rPass
MySQL SETTINGS
MySQL Version >=5.0 5.6.36-82.1-logPass
BACKUP ARCHIVE INFORMATION
ZipArchive enabled in PHP =true true Pass
Tar GZip supported =true true Pass
Tar BZip2 supported =true true Pass
SERVER INFORMATION
WordPress Root Directory /home/sopper/public_html/
Server Name www.sopper.dk
Server Software Apache/2.4.39 (Unix) mod_hive/6.27 OpenSSL/1.0.1e-fips mod_fastcgi/2.4.6
Operating System Linux
Architecture 64 bit
Server IP 109.73.232.103
Server Protocol HTTP/1.0
HTTP Host www.sopper.dk
HTTPS ON - on
Server self connect Response Test O.K.
User Agent Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0.3945.130 Safari/537.36
Server Port 443
Gateway Interface CGI/1.1
Memory Usage 17.23 MB
Complete URL Log ind ‹ SOPPER.DK — WordPress
Request Time 1580716836
Accept Content text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,image/apng,/;q=0.8,application/signed-exchange;v=b3;q=0.9
Accept-Charset Content N/A
Currently Executing Script Pathname /home/sopper/public_html/wp-admin/options-general.php
Current Page URI /wp-admin/options-general.php?page=mainwp_child_tab
Remote Address 185.150.199.130
Remote Host N/A
Remote Port 36634
PHP INFORMATION
PHP Allow URL fopen ON
PHP Exif Support YES ( V7.3.)
PHP IPTC Support YES
PHP XML Support YES
PHP Disabled Functions No functions disabled
PHP Loaded Extensions Core, PDO, Phar, Reflection, SPL, SimpleXML, Zend OPcache, bcmath, bz2, calendar, cgi-fcgi, ctype, curl, date, dba, dom, enchant, exif, fileinfo, filter, ftp, gd, gettext, gmp, hash, iconv, imap, intl, ionCube Loader, json, libxml, mbstring, memcached, mysqli, mysqlnd, openssl, pcntl, pcre, pdo_mysql, pdo_pgsql, pdo_sqlite, pgsql, posix, pspell, readline, session, shmop, soap, sockets, sodium, sqlite3, standard, sysvmsg, sysvsem, tidy, tokenizer, wddx, xml, xmlreader, xmlrpc, xmlwriter, xsl, zip, zlib
MySQL INFORMATION
MySQL Mode NO_ENGINE_SUBSTITUTION
MySQL Client Encoding utf8
WORDPRESS PLUGINS
Antispam Bee 2.9.1 Active
Classic Editor 1.5 Active
Google Pagespeed Insights 4.0.3 Active
Imagify 1.9.8.1 Active
Issuu Embed 3.0 Active
iThemes Security Pro 6.3.3 Active
MainWP Child 4.0.6.1 Active
ManageWP - Worker 4.9.2 Active
MonsterInsights - Ads Addon 1.1.2 Active
MonsterInsights Pro 7.10.4 Active
Perfmatters 1.4.6 Active
Rank Math SEO 1.0.37.2 Active
SG Optimizer 5.4.3 Active
WP Rocket 3.4.4 Active
WP Security Audit Log 4.0.0 Active

Next due Schedule Hook

3. februar 2020 09:08 Every 10 minutes wsal_detect_file_changes
4. februar 2020 09:25 En gang i timen backupbuddy_cron
5. februar 2020 09:29 En gang om dagen itsec_cron
6. februar 2020 09:30 itsec_cron_test
7. februar 2020 09:32 En gang i timen wsal_cleanup
8. februar 2020 09:33 En gang i timen rocket_purge_time_event
9. februar 2020 09:39 En gang om dagen itsec_purge_logs
10. februar 2020 09:41 En gang i timen wp_privacy_delete_old_export_files
11. februar 2020 09:52 To gange dagligt sucuri_scheduled_scan
12. februar 2020 10:22 En gang om dagen wsal_delete_logins
13. februar 2020 10:22 En gang om dagen log_files_pruning
14. februar 2020 10:24 En gang om dagen recovery_mode_clean_expired_keys
15. februar 2020 10:49 En gang om dagen itsec_cron
16. februar 2020 10:53 En gang om dagen itsec_cron
17. februar 2020 11:11 En gang om dagen itsec_cron
18. februar 2020 11:20 En gang om dagen gpi_prune_logs
19. februar 2020 11:20 En gang om dagen mainwp_child_pagespeed_cron_check
20. februar 2020 12:19 En gang om dagen backupbuddy_cron
21. februar 2020 13:19 To gange dagligt wpo_plugin_cron_tasks
22. februar 2020 15:00 En gang om dagen imagify_rating_event
23. februar 2020 15:00 En gang om dagen wpseo-reindex-links
24. februar 2020 15:14 En gang om dagen delete_expired_transients
25. februar 2020 19:45 To gange dagligt wp_update_plugins
26. februar 2020 19:45 To gange dagligt wp_update_themes
27. februar 2020 19:45 To gange dagligt wp_version_check
28. februar 2020 20:01 En gang om dagen mwp_update_public_keys
29. februar 2020 22:53 En gang om dagen wp_scheduled_delete
30. februar 2020 23:24 En gang om dagen wp_scheduled_auto_draft_delete
31. februar 2020 01:00 En gang om dagen rank_math/search_console/get_analytics
32. februar 2020 01:00 En gang om dagen rank_math/redirection/clean_trashed
33. februar 2020 01:00 En gang om dagen rank_math/links/internal_links
34. februar 2020 02:00 En gang om dagen imagify_sync_files
35. februar 2020 08:55 En gang om dagen wsal_log_files_pruning
36. februar 2020 11:21 weekly rocket_database_optimization_time_event
37. februar 2020 11:21 weekly rocket_google_tracking_cache_update
38. februar 2020 01:00 weekly rank_math/tracker/send_event
39. februar 2020 04:00 weekly imagify_update_library_size_calculations_event
40. februar 2020 07:21 weekly monsterinsights_usage_tracking_cron
41. februar 2020 08:30 weekly rocket_cache_dir_size_check
42. februar 2020 09:40 Monthly siteground_delete_assets

Time Error

18-Nov-2019 00:35:23 UTC Rank Math GSC API Error: POST https://www.googleapis.com/webmasters/v3/sites/https%3A%2F%2Fwww.sopper.dk%2F/searchAnalytics/query 401 | {“error”:{“errors”:[{“domain”:“global”,“reason”:“authError”,“message”:“Invalid Credentials”,“locationType”:“header”,“location”:“Authorization”}],“code”:401,“message”:“Invalid Credentials”}}
18-Nov-2019 00:35:23 UTC Rank Math GSC API Error: POST https://www.googleapis.com/webmasters/v3/sites/https%3A%2F%2Fwww.sopper.dk%2F/searchAnalytics/query 401 | {“error”:{“errors”:[{“domain”:“global”,“reason”:“authError”,“message”:“Invalid Credentials”,“locationType”:“header”,“location”:“Authorization”}],“code”:401,“message”:“Invalid Credentials”}}
18-Nov-2019 00:35:23 UTC Rank Math GSC API Error: POST https://www.googleapis.com/webmasters/v3/sites/https%3A%2F%2Fwww.sopper.dk%2F/searchAnalytics/query 401 | {“error”:{“errors”:[{“domain”:“global”,“reason”:“authError”,“message”:“Invalid Credentials”,“locationType”:“header”,“location”:“Authorization”}],“code”:401,“message”:“Invalid Credentials”}}
16-Nov-2019 00:17:48 UTC Rank Math GSC API Error: POST https://www.googleapis.com/webmasters/v3/sites/https%3A%2F%2Fwww.sopper.dk%2F/searchAnalytics/query 401 | {“error”:{“errors”:[{“domain”:“global”,“reason”:“authError”,“message”:“Invalid Credentials”,“locationType”:“header”,“location”:“Authorization”}],“code”:401,“message”:“Invalid Credentials”}}
16-Nov-2019 00:17:48 UTC Rank Math GSC API Error: POST https://www.googleapis.com/webmasters/v3/sites/https%3A%2F%2Fwww.sopper.dk%2F/searchAnalytics/query 401 | {“error”:{“errors”:[{“domain”:“global”,“reason”:“authError”,“message”:“Invalid Credentials”,“locationType”:“header”,“location”:“Authorization”}],“code”:401,“message”:“Invalid Credentials”}}
16-Nov-2019 00:17:48 UTC Rank Math GSC API Error: POST https://www.googleapis.com/webmasters/v3/sites/https%3A%2F%2Fwww.sopper.dk%2F/searchAnalytics/query 401 | {“error”:{“errors”:[{“domain”:“global”,“reason”:“authError”,“message”:“Invalid Credentials”,“locationType”:“header”,“location”:“Authorization”}],“code”:401,“message”:“Invalid Credentials”}}
13-Nov-2019 00:10:56 UTC Rank Math GSC API Error: POST https://www.googleapis.com/webmasters/v3/sites/https%3A%2F%2Fwww.sopper.dk%2F/searchAnalytics/query 401 | {“error”:{“errors”:[{“domain”:“global”,“reason”:“authError”,“message”:“Invalid Credentials”,“locationType”:“header”,“location”:“Authorization”}],“code”:401,“message”:“Invalid Credentials”}}
13-Nov-2019 00:10:56 UTC Rank Math GSC API Error: POST https://www.googleapis.com/webmasters/v3/sites/https%3A%2F%2Fwww.sopper.dk%2F/searchAnalytics/query 401 | {“error”:{“errors”:[{“domain”:“global”,“reason”:“authError”,“message”:“Invalid Credentials”,“locationType”:“header”,“location”:“Authorization”}],“code”:401,“message”:“Invalid Credentials”}}
13-Nov-2019 00:10:56 UTC Rank Math GSC API Error: POST https://www.googleapis.com/webmasters/v3/sites/https%3A%2F%2Fwww.sopper.dk%2F/searchAnalytics/query 401 | {“error”:{“errors”:[{“domain”:“global”,“reason”:“authError”,“message”:“Invalid Credentials”,“locationType”:“header”,“location”:“Authorization”}],“code”:401,“message”:“Invalid Credentials”}}

Hey @webfronten, reports look fine. Nothing unusual in there. Can you give me a few more answers so I can get a better picture about your setup:

1. Are all your child sites on the same host/server?
2. Do you have some plugins that are in common for all sites?
3. Do you use Cloudflare or any other cloud proxy?

Hi Bogan

1. The child sites are on either on Siteground Cloud Hosting or on Kinsta.
2. ManageWP Worker plugin is activated on all sites (because I’m in the process of switching to MainWP) ). iThemes Security Pro and Classic Editor plugin are also activated on all sites.
3. I don’t use Cloudflare but on 6 sites at Kinsta I use Kinsta CDN.

Torben

Hi Torben,
Since sites are on 2 different hosts, I think that is not the problem. The only thing that I would try is to try to disable the ManageWP on one site temporarily to see if that will help.

Hi again Bogdan

I tried to deactivate ManageWP Worker plugin on a couple of sites, but it didn’t solve the problem. I also tried to deactivate the BlogVault backup plugin and WP-Rocket but it didn’t help either.

Hi @webfronten, thanks for verifying that. It’s a very strange issue. I can’t duplicate it on my test setup.

Are you able to open a helpdesk ticket so we can investigate this further?

I have the same issue although I don’t have ManageWP – if you received a solution would you please let me know?

As soon as we find solution, we will release update and get this topic updated.

I have the same problem, so I hope you will find a solution

We are still currently working on a solution.

As soon as we find solution, we will release an update and announce it on this topic.

Thank you all for your patience.