By default, WHMCS does alright with providing administrative access login security, denying access after X invalid logins. However, we feel there’s just so much better that they can do here. With WHMCS User and IP Extended, you can
Gone are the days of having to edit .htaccess files for adding admin IP addresses. We provide you with a ‘lockout’ script that can be called via browser by any logged in admin. If not logged in, they’ll be redirected to the admin login page.