PluginsArmorProCitedProBoostPro
PricingDocsBlogAboutGet Started

Getting Started

Install and configure ArmorPro in under 5 minutes.

Last updated Feb 3, 2025

Installation

  1. Purchase ArmorPro from srworks.co
  2. Download the plugin ZIP file from your purchase confirmation email
  3. In WordPress, go to Plugins → Add New → Upload Plugin
  4. Choose the ZIP file and click Install Now
  5. Activate the plugin
  6. Go to ArmorPro → License and enter your license key

Initial Configuration

After activation, ArmorPro works immediately with sensible defaults. However, we recommend reviewing a few key settings:

1. Check Brute Force Settings

Go to ArmorPro → Brute Force. The default settings are:

  • Max failed attempts: 5
  • Lockout duration: 15 minutes
  • Extended lockout: 60 minutes (after 3 lockouts)

These defaults work well for most sites. Adjust if you have specific needs.

2. Add Your IP to the Whitelist

Go to ArmorPro → Access and add your IP address to the whitelist. This ensures you never accidentally lock yourself out during testing.

Tip

Your current IP address is shown at the top of the Access page for easy copying.

3. Review Firewall Rules

Go to ArmorPro → Firewall. By default, the firewall blocks:

  • SQL injection patterns
  • Bad HTTP methods (TRACE, DELETE, etc.)
  • Suspicious query strings
  • XML-RPC requests (if enabled)

4. Set Up Security Headers

Go to ArmorPro → Headers. Enable the recommended headers:

  • X-Content-Type-Options: Prevents MIME-type sniffing
  • X-Frame-Options: Prevents clickjacking
  • Referrer-Policy: Controls referrer information

Additional Features

Once the basics are configured, set up these additional features:

Two-Factor Authentication

Go to ArmorPro → 2FA and enable it for administrator accounts. Each user will need to scan a QR code with their authenticator app (Google Authenticator, 1Password, Authy, etc.).

Learn more about 2FA setup →

Custom Login URL

Go to ArmorPro → Login to change your login URL from /wp-login.php to something custom like /my-secret-login.

Learn more about custom login URLs →

Verify It's Working

After configuration, verify everything is working:

  1. Check the Dashboard: Go to ArmorPro → Dashboard to see your security status overview
  2. Test Login Protection: Try entering a wrong password several times (from a non-whitelisted IP) to confirm lockouts work
  3. Check Security Headers: Use securityheaders.com to verify your headers are being sent

Next Steps

Now that ArmorPro is installed and configured, explore these features:

NextBrute Force Protection →