We explain the steps to take if your site has been compromised.…
Support
Resources
Modified WordPress Core Files
Learn what WordPress core files are, and why they should never be modified. If our system detects modified WordPress…
Two-Factor Authentication
Learn how to enable Two-Factor Authentication for your WP Engine User Portal account for additional security. Two-Factor…
How do I change my SFTP password?
Follow simple instructions on this page to reset your SFTP password via the WP Engine User Portal, in order to…
Uploading Third-Party Certificates
Learn how to transfer a third-party SSL certificate from your SSL provider or previous host to WP Engine by using…
What to do with a CSR
Learn what a CSR is, what they typically look like, and how to use a CSR once you have generated one in the WP…
Deferring WP Engine Automatic Updates to WordPress Core
Learn how to implement update deferral mode for WP Engine's automatic WordPress updates in your User Portal.…
Best Practices for eCommerce Sites
Find out WP Engine's recommendations to keep your eCommerce site secure, scalable, and speedy with Best Practices.…
Updating Host Keys for Use with SFTP
We’ll guide you through how to update or delete your host keys locally to help resolve errors surrounding "host…
SSL Certificates and CAA Records
We explain the need for CAA records, how to verify whether your DNS provider supports them, and how to set up a…
Choosing a strong password
This article will assist you with choosing a strong password to protect your site. The use of a strong, unique…
Admin login rate limiting
As a security measure, we’ve implemented a new rate limiting rule to protect your site from malicious attempts…