My immunity is strong.

Secure Restricted Areas in 5 Minutes with Cloudflare Access

cloudflare-access helps protect restricted areas.
Cloudflare Access Secures Sensitive Areas

What is Cloudflare Access

Cloudflare Access protects sensitive areas of your domain with access policies, so that only authenticated users can access those resources.

Basically it is a zero trust solution that protects your restricted areas like a bouncer who checks identity at the door.

Each and every request to restricted area is validated before granting access.

Cloudflare Access is currently active on this site to restrict access to WordPress Backend to anonymous users.

Cloudflare Access Pros

  • Quick and hassle free setup.
  • No code changes at your site.
  • Easy to control, deploy, maintain and monitor.
  • Setup policies in minutes.
  • Runs fast on desktop as well as mobile devices.
  • Authentication can be done using existing single sign-on providers you already use.
  • A centralized way to secure corporate infrastructure.
  • Secure protected areas without using a VPN.

Cloudflare Access Cons

  • If you know any, let me know.

Cloudflare Access Features

  • Control which users and groups reach sensitive areas.
  • Secure, authenticate, and monitor user access to any domain, application, or path.
  • See real-time logs for access requests, monthly active users, and policy changes.
  • Easily change policies from dashboard or using API.
  • Allow acces only from specific countries.

Allowed Identity Providers for Cloudflare Access

  • Facebook
  • Github
  • Google
  • Yandex
  • AzureAD
  • Centrify
  • G Suite
  • Okta
  • OneLogin
  • OIDC Providers
  • SAML

Last two options are available only with the Enterprise plans.

Cloudflare Access Benefits

  • Protect WordPress Login/Admin from Brute Force attacks.
  • Protect restricted areas of your corporate network.

How to Enable Cloudflare Access

  • Visit Access from Cloudflare Dashboard.
  • Click Enable Access.
  • Select Access Basic, and 5 Active Users.
  • Click Continue.
  • Add Billling, and Purchase.
  • Click Let’s get started!
  • Choose Login Page Domain i.e yourdomain.cloudflareaccess.com
  • Click Look’s good to me.

How to Enable Clouflare Access Policy

cloudflare-access-policy
Cloudflare Access Policy

This is a sample setup for a WordPress site.

We will add 3 policies.

  • Bypass admin-ajax.php
  • Block wp-admin.
  • Block wp-login.php

Steps

1. Admin Ajax Policy

  • Click Create Access Policy.
  • Enter Application name as Ajax Page.
  • Enter Domain as wp-admin/admin-ajax.php
  • Select Session Duration as your choice of hours.
  • Enter Policy name as Ajax Policy, Decision as Bypass, Include Everyone.
  • Then Save.

2. WP Admin Policy

  • Click Create Access Policy.
  • Enter Application name as WP-Admin.
  • Enter Domain as wp-admin/
  • Select Session Duration as your choice of hours.
  • Enter Policy name as WP-Admin and Decision as Allow.
  • Add Include Emails and your email address.
  • Add Require Country and country you wish to allow for login.
  • Then Save.

3. WP Login Policy

  • Click Create Access Policy.
  • Enter Application name as Login Page.
  • Enter Domain as /wp-login.php
  • Select Session Duration as your choice of hours.
  • Enter Policy name as Login Policy and Decision as Allow.
  • Add Include Emails and your email address.
  • Add Require Country and country you wish to allow for login.
  • Click Save.

This way you have put Cloudflare Access in front of WordPress Login and also enabled two factor authentication.

See Cloudflare Access in Action

  • Visit your login page, enter your email address, and get one time pin to login.
cloudflare-access-authentication
Cloudflare Access Authentication Page

Cloudflare Access Plans

Access offers two types of plans.

  • Teams Free provides free access to 50 users/month.
  • For Teams Access pay US $3/user/month.

Each email address counts as 1 active user per month.

Another way to secure WordPress Login is to activate Jetpack Secure Sign-On, and host your site with a Managed WordPress Hosting provider.

Moral of the Story

Cloudflare Access protects restricted areas of your domain using zero trust model.

Email Newsletter

Get tips to achive more from less.

Thank you my dear friend for coming here.