It's possible to lockout all admins either by locking the wrong IP address or entering the password wrong.
There needs to be secure way to do fix the config or reset the users.
For IP lockdown there is a 127.0.0.1 client IP failsafe but that is not very practical as it means the browser has to be open on the production server itself.
It's possible to lockout all admins either by locking the wrong IP address or entering the password wrong. There needs to be secure way to do fix the config or reset the users. For IP lockdown there is a 127.0.0.1 client IP failsafe but that is not very practical as it means the browser has to be open on the production server itself.