WP Legends Live Panel on March 11th: The Line Between Good and Great Agencies
WP Legends Live Panel on March 11th:
Whitelisting CheckView in SolidWP Security
Good news: CheckView now automatically whitelists its IP addresses in Solid Security during tests, so in most cases no manual setup is needed. Follow the steps below only if CheckView still reports that Solid Security is blocking the test.
If CheckView detects that SolidWP Security (formerly iThemes Security) is blocking requests to your site, you will see an error message indicating that SolidWP Security is preventing CheckView from connecting. This guide explains how to whitelist CheckView so tests can run without interference.
Why SolidWP Security Blocks CheckView
SolidWP Security includes firewall rules and brute force protection that can block automated requests – including CheckView’s test runner. Common triggers include:
- Lockout rules – SolidWP may lock out IP addresses that make multiple requests in a short period, which happens during test execution.
- Bot detection – The firewall may classify CheckView’s browser automation as bot traffic.
- REST API restrictions – Some configurations restrict REST API access to authenticated users only, preventing CheckView from communicating with the helper plugin.
How to Whitelist CheckView in SolidWP Security
Step 1: Open the Firewall IP Management
- In your WordPress admin, go to Security → Firewall → IP Management.
- Find the Authorized IPs section (also referred to as “Authorized Hosts” in some versions). IPs listed here are exempt from all lockouts and bans, ensuring trusted services like CheckView are never blocked.
Step 2: Add CheckView’s IP Addresses
- Enter CheckView’s public IP addresses into the Authorized IPs field, one IP per line.
- Both IPv4 and IPv6 formats are supported. You can also use CIDR notation (e.g.,
203.0.113.0/24) or wildcard format (e.g.,203.0.113.*). - You can find the current list of CheckView’s IP addresses on the Whitelisting CheckView’s Public IPs page.
- Click Save to apply the changes.
Alternative: WP-CLI
If you prefer the command line, you can add IPs to the Authorized Hosts list via WP-CLI. Separate multiple IPs with commas:
wp itsec settings set global lockout_white_list 1.2.3.4,5.6.7.8Replace the example IPs with the actual CheckView IP addresses from the Public IPs page.
Verifying the Fix
After adding CheckView’s IPs to the Authorized IPs list, return to your CheckView dashboard and retry connecting the website or re-run your test. If the error persists, double-check that all IP addresses have been added correctly and that no other security plugin or server-level firewall is also blocking requests.
Related
- Whitelisting CheckView’s Public IPs
- Whitelisting CheckView IPs and Bypassing Security Plugin Blocks
- Cannot Connect Website to CheckView
- Blocker Detection – CheckView now auto-detects when this service blocks tests